My laptop (bless) is locked down.
Yes I put all kinds of software on it but only for a purpose, never for fun. I use it but don’t abuse it.
The software and OS are locked: two firewall installations and a deny manager for IP feeds coupled with a set of firewall rules that are configured on the basic idea that ‘no’ is the default position for everything.
Even iTunes isn’t allowed to communicate to the iStore without my specific say so every time, and as for peer-to-peer – forget it!
I also run blockers – pop-up blockers, function blockers; do a deep disk scan once a day, scan every potential virus source before it’s opened have all attached media scanned before they’re accessed and I run anti-spy ware software in two variants, one daily the other weekly.
The whole installation gets backed up twice, once a week (each time to distinct file and data repositories).
This is really boring stuff I know but bear with me.
My PC at work is riddled.
There’s something nasty buried inside, every now and then it generates random pop-ups, one – last Thursday – was when my manager was standing next to me but it was OK because the subject of the pop-up was ‘buy a crap PC from Dull and…’. You get the picture.
Friday it popped up some not good stuff – not ‘work safe’ if you know what I mean.
I can’t install google toolbar and use the pop-up blocker because that’s against the organisation’s AUP.
I can’t install any of my favourite anti-nasty tools because they’re all licensed to me and my company – not my customer.
I phoned the IT hell desk and got a response I’d describe as less than enthusiastic.
They didn’t turn up to fix it, that’s for sure.
Perhaps they will next week.
The OS on my work PC is W2k which, as you might know, is probably the most vulnerable Microsoft OS ever, apart from ME maybe.
But there’s a point to consider here.
I’m allowed to install Firefox (praise be!), but I’m not allowed to make it my default browser. I’m not allowed to install any app – don’t have supervisor’s rights – which also means I’m not allowed to install any blockers.
It’s a bit of a weird situation really – and this line of thinking certainly isn’t pointed specifically at my customer. I know for a fact the thing I’m just going to outline is common in many organisations…
That there’s often an AUP which governs the conditions the users are expected to operate within, but is there a reciprocal AUP or SLA that the organisation is expected to abide by in checking issues of this nature out?
I realise I’m straying in to the area of reciprocal service management but…
I bet the answer to my question is ‘not often, no’.
Hmmm… maybe I should have put this blog post over on the company blog.