this post was submitted on 16 Aug 2023
943 points (97.2% liked)

Memes

45625 readers
1020 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] testuserpleaseupvote@lemmy.world 92 points 1 year ago (3 children)

Oh, wait until you get a job in most offices. Microsoft, Microsoft everywhere.

BYOD with Linux? "We can't install the company's spyware on it, get that security risk out of here."

[–] Bobert@sh.itjust.works 63 points 1 year ago* (last edited 1 year ago) (2 children)

I mean they're not wrong, BYOD is an absolutely ginormous attack vector.

[–] crispy_kilt@feddit.de -4 points 1 year ago (2 children)

If an organisations' security relies on the end device configuration there is no security.

[–] Bobert@sh.itjust.works 5 points 1 year ago

Who needs defense in depth, right?

[–] Contend6248@feddit.de 3 points 1 year ago (1 children)

You can bring your own devices, but you don't get permission to access anything?

Or what are you even trying to say about what the end users device being able to do anything

[–] crispy_kilt@feddit.de 0 points 1 year ago

I don't think I said anything about what a device can and cannot do

[–] rmuk@feddit.uk 54 points 1 year ago (1 children)

When you're supporting ten thousand machines on four continents and confirming to twenty different data protection doctrines the last thing you need is some neckbeard rocking up demanding to store data in their unauditable homebrew fork of Haiku or some shit.

[–] crispy_kilt@feddit.de 10 points 1 year ago

What is achieved with GPOs and agents is compliance, not security.

In other words, company issued devices don't protect the data, but they ensure conformity with relevant regulations and standards. Which is what most organisations actually care about.

Many good IT people really do care about actual information security, but not those in charge.

The result are devices that hinder some people's work but provide questionable actual security.