Re: Protecting users from themselves
From: jmnugent (ten.tsacmoc_at_tnegunmj)
Date: 08/28/03
- Next message: Bill Robins: "Re: MSSQL and MySQL"
- Previous message: Linda: "Re: Virus and spam blocking technique"
- In reply to: Duane Morin: "Protecting users from themselves"
- Next in thread: Walter Dnes: "Re: Protecting users from themselves"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 28 Aug 2003 02:41:23 GMT
Well...because the human element is unpredictable, there will always be
security holes in a human run system,
However..here are my thoughts...
First..I agree with you. You cant make it so tight and restrictive that
people rebel and put effort into getting around it.
My theory is you have to try to make (or help) people understand WHY your
doing something.
Whether this is by having a big employee conference, or revising and handing
out new employee handbooks,
it all depends on how you approach it.
(presentation voice)
paraphrasing----" Attention everyone, we are instituting new computer
security guidelines, X, Y and Z
for reasons X1, Y1 and Z1. We had many team meetings and discusions,
reviewed many different options,
but feel these new rules are the best solution possible. These new security
guidelines are being put in place to help protect our business,
make the workplace a safer enviroment. yadda yadda yadda...
I know there's alot of cliche and "Dilbert" talk in that....but you have to
convince the listeners that you did the research, reviewed all possible
options,
and the solution being implemented is as fair as possible and the best thing
overall for the company and employee's.
Hope that helps
-jmnugent
"Duane Morin" <dmorin@morinfamily.com> wrote in message
news:554f29fd.0308271830.e2f4948@posting.google.com...
> I've got a magazine article assignment on corporate anti-virus policy,
> and one of the specific questions they'd like me to address is how to
> keep users from being the gaping hole in any secure system. Beyond
> some thoughts on "don't make the policy so restrictive that they go
> out of their way to get around it because they're pissed at the
> inconvenience" and "Nobody seems to think that the P2P program they're
> running on their office PC is the cause of any problems.." I'm not
> sure what else to write on the subject. Anybody got any suggestions
> for me? How can you get users to not break everything (accidentally
> or deliberately) that you're trying to accomplish by securing your
> system?
>
> If this is the wrong place to post, sorry. I posted to alt.comp.virus
> and was told that the "real" virus fighters didn't hang out there
> anymore. But comp.virus is moderated and seems to only get 1 post or
> so per month.
>
> Duane
- Next message: Bill Robins: "Re: MSSQL and MySQL"
- Previous message: Linda: "Re: Virus and spam blocking technique"
- In reply to: Duane Morin: "Protecting users from themselves"
- Next in thread: Walter Dnes: "Re: Protecting users from themselves"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
