Main > Everything Else
Captcha
ChadTower:
Meh. It seems that way but the math in that comic was indisputable. I have never met a security admin or network architect worth a damn who doesn't get that. I have no idea why we're still seeing standards like we do.
newmanfamilyvlogs:
Because they don't get to truly be in charge. They just follow what the higher ups say.
shmokes:
--- Quote from: ChadTower on September 02, 2011, 10:04:27 am ---
Meh. It seems that way but the math in that comic was indisputable. I have never met a security admin or network architect worth a damn who doesn't get that. I have no idea why we're still seeing standards like we do.
--- End quote ---
Oh, I get and agree with the comic. I'm just saying that the comic doesn't go far enough because the comic doesn't take lockout into account. If the bot can only try 3 passwords per day (as opposed to 1000 passwords per second) the time it takes to guess a password is slightly increased. And since account lockout is pretty much ubiquitous (and anyway just as easy easier to implement than ever-changing password complexity requirements), that is the world we are dealing with, not the actually far more dangerous world depicted in the comic. In short, the situation is even so much more absurd than the comic illustrates.
Vigo:
No matter what IT just doesn't really care, they just put on a show for the execs. If the CEO thinks everything is more secure by forcing everyone to write jibberish for their passwords, IT will accomidate.
Generally, IT doesn't give a crap as long as it doesn't make work for themselves. They are too busy helping the idiots all day. I got a new computer at work this week, and they accidently left the administrator account loged in. I went in and elevated my account to administrator level. IT noticed when they when back to install some applications. The IT guy said "Huh, you are not suppose to have admin privileges." I replied, "Nope, I'm not".
The conversation ended there. I still have an admin account, and probably simply because the guy knows I'm not some idiot who manages to break their computer every week.
Vigo:
I made myself an admin, and the IT guy noticed because he could install programs on my account and then noticed I could access the admin user folder. Unfortunately, I'm still not experienced enough with windows 7 and the UAC rules. I didn't realize that I would have to grant access to my account to give privileges to disabled control panels and certain parts of the registry.
I think i will be bringing in a bootdisc, I don't even have privileges to uninstall stuff that I installed.
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version