Yesterday I talked about the Storm Worm virus, but today I would like to talk about the can of IT worms that the Wall Street Journal opened with a popular article entitled "Ten Things Your IT Department Won't Tell You." All I have to say is “Thanks a lot Smart Guy!” Okay, those aren’t my exact words, but close enough. Almost all of these suggestions compromise network security not to mention potential software conflicts. Regardless, your team should be prepared to assist users appropriately with sound options. Try adding questions to these questions to your Knowledge Base with customized answers so that your techs can provide the best solutions for your companies needs. Watch out, some of the suggestions in this article can open up huge holes in your network.
1. How to send giant files:
I agree with Vara’s suggestion to utilize a reputable service, such as YouSendIt to send large files, as long as those files are not sensitive. If large file transfers are needed often, your IT department can always put an FTP site in place.
2. How to use software that your company won’t let you download.
Oh great! Thanks a lot for that one! This writer did not fully research all the problems that come with downloading software that your company does not want on the network. He has also never had to re-image a machine as a result of someone doing something like this. He does mention the risk of spyware, and security issues, but software conflicts can cause IT headaches also.
Users - It is better to ask the help desk to either install the software for you or provide another software option.
3. How to visit the websites your company blocks.
Wonderful. I know way too many people who will try this one. Your users will now be checking out proxy.org or similar methods to find proxies that will prevent your security department from knowing what sites they are surfing.
Users - If your company is blocking a site that you need to access for business purposes, call and explain why you need access to it.
4. How to clear your tracks on your work laptop.
Honestly, I don’t really get bent about what people do on there own time with their laptops. Clear your cache and history as much as you want, but exposing sensitive company data stored on your computer to the internet while your surfing is not such a cool idea. Is it really worth loosing your job over it though? What if one day you forget to clear your cache and history? Just use your home computer for that stuff.
This is a bad idea from the word go. Just forget it. Copy the files to your laptop, and bring your laptop home. Better yet, ask your IT department if they offer VPN access.
6. How to store work files online.
Ditto to my response to number 5.
7. How to keep your privacy when using web email.
The suggestion in the article is to use encrypted software. My suggestion, if you don’t want your boss to see it, don’t read it on your work computer. When your computer is hooked up to the company network, it can be scanned by your network engineers at any time.
8. How to access your work email remotely when your company won’t spring for a blackberry.
Wow! This takes the cake for bad ideas by suggesting that users forward copies of work email to personal mailboxes.
9. How to access your personal email on your blackberry.
Just say no if you are tempted to do this. Don’t get into the habit of checking your personal email this way.
10. How to look like you’re working
Here Vara suggests using the Alt and Tab keys to quickly switch windows. Okay, I do this all the time, but it is usually because I don’t want people reading sensitive information over my shoulder.
Work-arounds that exploit the good intentions of IT departments and help desks will always be accessible. There is not a system in place that cannot be hacked or compromised, but does the Wall Street Journal really think they are doing their readers a favor by exposing security holes like this and suggesting that employees open the "virtual company safe" for any interested hackers to access? Remember when your mother asked you "If your friends told you to jump off a cliff, does that mean you should go jump off a cliff?" I hope readers will head caution, and take their mothers advice.
Comment Preview