Sys-Admins Reading the Bosses Mail? 398
PetManimal writes "Computerworld has an article about IT staff who have access to corner-office email. Systems administrators, database administrators, storage administrators and higher level IT super users are the types who may access sensitive executive information; one source quoted in the article says that in a company with 1,500 employees, there might typically be five to 10 administrators who have this access. As for how many abuse these priviledges, it's hard to tell, but rogue admins out for workplace revenge or personal gain can wreak havoc: '... Experts agree that the severity of these occurrences generally makes them more harmful than external attacks. One of the biggest obstacles to eliminating unauthorized access is determining how many people have it. Access lists are particularly difficult to formulate in both mature companies, where the number and power of administrators have expanded over periods of years, and small companies, where rapid growth leads to undocumented tangles of administrators who are able to maintain their access because nobody has time to assess their status.'"
apparently they never read BOFH! (Score:5, Funny)
Anonymous (Score:1, Funny)
Bah old news... (Score:5, Funny)
Gotta go, he's sending an email now about outsourcing the IT department!
Re:And slashdot comments? (Score:5, Funny)
What about the /. admins who can read our highly sensitive comments?
Comments? I'm not even sure they read the article summaries.
Re:Anonymous (Score:3, Funny)
This is old news. (Score:4, Funny)
Re:Clearance Control (Score:2, Funny)
Well there was, until you went and told everyone!
Re:And slashdot comments? (Score:5, Funny)
Re:Bah old news... (Score:0, Funny)
Trust me (Score:2, Funny)
John Smith
CIO, CFO, CEO
MegaCorp, Inc.
Employee of the Month
Employee of the Year
Grand Exalted Poohbah
Keeper of Keys
Omniscient All-Seeing Eye
bounces are better (Score:5, Funny)
I created a t-shirt for work a couple of years back when I heard someone saying that we were reading their e-mails.
"I Read Your E-mail"
" It's Boring "
[John]
Re:And slashdot comments? (Score:5, Funny)
Re:Clearance Control (Score:3, Funny)
Re:Clearance Control (Score:3, Funny)
It's like you read my mind. Freaky.
Re:Fucking Computerworld fear-mongering! (Score:3, Funny)
Re:Clearance Control (Score:5, Funny)
That's one good example. Another is secretaries. Everything confidential seems to go through them in a small business and they always seem to need access to all the sensitive areas of the network.
Incidentally, I run the network at my current employers. Shortly after starting, I restructured all the groups to make it more secure. I then matter of factly told them that I'd removed my access to certain areas that I didn't have the right to access. On occasion, I've added myself back on to accomplish certain things for them. They always find that hugely amusing.
Re:And slashdot comments? (Score:5, Funny)
English: "Sys-Admins Reading the Boss' Mail?"
Slashdot: "Sys-Admins Reading the Bosses Mail?"
For an admin reading the e-mail of more than one boss, the title would be:
English: "Sys-Admins Reading the Bosses' Mail?"
Slashdot: "Sys-Admins Reading the Bosseses Mail?"
Re:Secretaries are a bigger issue (Score:5, Funny)
I was once trying to explain to an exec why his account would never be absolutely secure.
Me: "If somebody wants your account information badly enough, he's going to get it. He doesn't have to hack the system, he can just get it from you." ... Which daughter?
Exec: "That's crazy, I'd never give anyone my password."
Me: "Imagine you come home and find someone's broken in. He's got a gun to your daughter's head, and he tells you he's going to shoot in ten seconds if you don't give him your password. What would you do?"
Exec: [long pause]
To this day I still don't know if he was joking. But I no longer use that example.