RE: RE: Securing workstations from IT guys

I quite agree.

And in my experience, when steps are taken to keep "IT guys"
from accessing specific systems, the eventual result is that
*EVERYONE* (including on the Internet) has access to those
systems *except* the people whose job it is to protect them.

That users do not regard this as a problem is a critical
issue at layer 9 or 10 (layer 8 is Money; 9 and 10 are
Politics and Religion) and does not admit of a technological
solution.

David Gillett


-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx
[mailto:listbounce@xxxxxxxxxxxxxxxxx] On Behalf Of
kurt.kessler@xxxxxxx
Sent: Tuesday, November 27, 2007 7:29 AM
To: security-basics@xxxxxxxxxxxxxxxxx
Subject: Re: RE: Securing workstations from IT guys

"This being said, to effectively do their jobs the IT staff
needs to have access to everything. You have personnel
problems if you cannot keep your IT staff from snooping where
they should not.."


The IT staff should have the absolute minimum amount of
rights that they need to do their job. Any more, is *ASKING*
for this kind of problem.
There should be several groups, where users are placed based
on rights needed to perform their particular job.


Relevant Pages

  • Re: Dee the liar
    ... >accident....grouchiest surgeon on staff, of course, and I had so little ... >sense as to fess up and admit what I had done. ...
    (sci.med.transcription)
  • Re: Playstation anime girl wanted
    ... I'm fairly certain that she's not a Magical Girl, but having only seen one episode ... I'm not sure if she's a zombie or not. ... I have to admit I've never been too sure about the official definition ... She has staff for clerical duties. ...
    (uk.media.animation.anime)
  • Re: more greatness from Jon Stewart
    ... Jon and his staff are damn good, but you have to admit, Bush makes ...
    (rec.music.artists.springsteen)