Why YSK: It appears several Lemmy Instances are flagged as suspicious and at least 1 instance intentionally using the name of ransomware. A couple of the big enterprise monitoring suites (Fortiguard, ZScaler) will flag your account and may end up with you being pulled into an office for an explanation, or worse.

TL;DR: Keep browsing to your local instance at work for now.

  • uberrice@feddit.de
    link
    fedilink
    arrow-up
    15
    arrow-down
    1
    ·
    1 year ago

    Depends on your work. I agree with you, but for example my work is different.

    Yes, we have managed devices as well, but my department specifically went for unmanaged devices. Just plain old laptops. Install whatever OS you want, do whatever you want. I only have the base windows install on there for some compatibility reasons, I mostly just use PopOS.

    And we’re also explicitly allowed to browse private content - as long as the work gets done and we stay in budget, do whatever.

    • theDoctor@lemmy.sdf.org
      link
      fedilink
      arrow-up
      22
      ·
      1 year ago

      If you are on their network they can see what you are doing. At the end of the day, the business will protect itself.

      Do what you want at your own risk. But never assume that any company is on your side.

      • monobot@lemmy.ml
        link
        fedilink
        arrow-up
        5
        ·
        edit-2
        1 year ago

        This is so simple, whatever policy they have if something goes wrong they will try their best to find a scape goat.

        Why do you people have phones with gigabytes of daya for?

        Additionally, do your best not to be part of the company where you might get into trouble for just using internet.

      • uberrice@feddit.de
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        Of course they can. That’s why I usually use my phone as a hot spot when I’m browsing private stuff ;)

    • ludwig@lemmy.world
      link
      fedilink
      arrow-up
      2
      ·
      1 year ago

      Do the other departments use managed devices? IT might get pretty mad if your department went over them and bought computers themselves, lol.

      It’s not optimal from a security and legal point of view.

      • uberrice@feddit.de
        link
        fedilink
        arrow-up
        4
        ·
        1 year ago

        IT specifically has an option for unmanaged devices, exactly for developers like me :)

        • ludwig@lemmy.world
          link
          fedilink
          arrow-up
          2
          ·
          1 year ago

          Alright. Seems reasonable as long as the devices are sandboxed from the company network and resources.

          • uberrice@feddit.de
            link
            fedilink
            arrow-up
            2
            ·
            1 year ago

            They aren’t, and our private phones are also connected to the network ;)

            But then again, it’s a fairly large organization vpn’d up over multiple locations, with server farms in different VLANs and so on, so the network we usually access when working are in a different subnet.

            I do know what you mean though - it really depends on what the company does. Prior, I worked at a company that developed and manufactured hardware cryptography devices - I learned proper security procedures there :) our ‘actual work computers’ weren’t even connected to the Internet, and the unmanaged laptops accessed the same WiFi guests would access that, well, only went to the Internet. Just wpa2.

            • ludwig@lemmy.world
              link
              fedilink
              arrow-up
              1
              ·
              1 year ago

              They aren’t, and our private phones are also connected to the network ;)

              Why though‽ Most consumer routers even have a guest network enabled by default.

              it really depends on what the company does.

              That’s true, but an attack could probably cause a lot of damage to any company (especially a big one) without proper security. Regardless of what they do.

              Well at least you don’t have to deal with ITs PC policies, which can get pretty annoying. Allowing any device to join the company network seems incredibly stupid though.

              Let’s just hope that none of your unmanaged machines get compromised.

              At my previous company, only domain work computers could join the PC WiFi (with a certificate, so no passwords) and work smartphones could only join the work WiFi for mobiles.

              Private devices and very limited amount of non domain computers were only allowed on the guest network and couldn’t connect to any other.

              The company didn’t do anything special that needed extra security.