Slashdot Mirror
System Adminstration and Corporate Ethics?
Not-a-BOFH asks: "About seven years ago while SysAdmin'ing for a (then) small software company, I was approached by the CEO regarding a technical issue. He explained to me that he got a bit hot headed at another employee and sent said person an email that he now wished he hadn't sent. His request to me was to dig through this person's email and delete it before he came in that morning. As the SysAdmin, this was certainly possible for me to do, but I've always tried to remain ethical when having such access to sensitive documents. In the case of email, I explained to the CEO that to me it was like tampering with the U.S. Mail, and I wasn't comfortable doing it. Long story short, my boss had no issue with it, and wound up doing it anyway. Looking back now, I'm not really all that surprised that that decision of mine led to my getting fired, but I've always wondered how many other people have had similar situations happen to them, where personal ethics and CEO heavyhanding came into play, and their job security suffered from the clash."
Get off your high horse. It's corporate mail, it's owned by the corporation. You should have just deleted it. Gee someone wrote something they later regreted, there's nothing wrong with deleting the mail in that case.
This sort of thing happens all the time: sysadmins are in an interesting position where they feel ethical responsibilities to their network and the privacy of their users because they associate this with their jobs.
Sadly, I think that is leftover from the collegiate atmosphere where the sysadmin culture evolved--corporations have no such rules or regard for privacy. The fact that most corporations track every metric and move their employees make.
If you are allowed to have the illusion of freedom and fairness as a sysadmin, enjoy it but make no mistake: it is an illusion, and if it interferes with real work, higher-ups or the bottom line these "ethics" are going to take a walk.
Businesses only respect ethics that are enforced by government agency and carry real penalties--manipulating internal email is not one of these.
Firstly, the assertion that deleting the email was "like tampering with the US Mail" is a bit inaccurate. Corporate email is a corporate asset, and many companies try to make that very clear to their employees (with disclaimers, usage agreements, and the like). The CEO asking you to remove an email is certainly within the bounds of the company's rights.
:)
Is it ethical? Strictly, one would like someone to own up to their own mistakes, so, no. However, if it was an envelope sitting in the mailroom, waiting to be delivered, most people would agree it would be ethical to retrieve the envelope. Even if it had made it to the employee's mailroom pigenhole, I think most would allow the sender to ethically remove it. This situation is just an electronic extension of inter-office mail.
I'd say that people have the ethical right to recall something they've sent out under certain circumstances, and to keep the almost-recipient of their mistaken wrath from receiving the message, especially if they came to their senses right after dropping the message off -- have you ever called someone to chew them out and then hung up right after they picked up the phone? I'd argue that this could be interpreted, ethically, like that.
In fact, some mail systems (Exchange, for example) even let the users themselves recall an email that's been sent out. If the recipient has not yet read it, they never know it was recalled. If they have read it, then I'm not sure what happens -- I think if it's still in their inbox, it gets deleted (and I'm not sure if a placeholder saying "message recalled" is created or not). If it's been copied to another mailbox (particularly to a local folder), it might be missed. I know I've made copies of sensitive messages I've received, on the off chance the sender might try to recall them.
Beyond the ethics, though, is the scary thought that voicing your unease hurt you.
Did this really lead to your being fired? I'd like to think the CEO admired you for standing up to what you believed, and also for ending up helping him out in spite of that, "for the good of the company." On the other hand, maybe he was just a real jerk. (did the firing happen soon after, or years later?)
When I was a sysadmin, I'd been asked to do a couple things that I wasn't entirely comfortable with, ethically, but they were all certainly legally permissable (their network, after all), and my job wasn't to be morals cop, it was to be a good sysadmin. In these cases, I had a good enough relationship with the person making the request that I could voice my concerns, and know that he'd understand them and appreciate my opinion, without fear of recrimination. And, again, I think my ability to show that I had at least considered the ethical implications of what I had been asked to do, coupled with the fact that I was still a good employee and did what was best for the company, strenthened the trust between me and that particular upper-level-manager. So it was a win-win.
It depends on the boss, though, that's for sure.
So, I'd say that it was right for you to raise a concern, in principle, though my *personal* opinion is that you were perhaps oversensitive in this instance. It was also right for you to do what you were told (it is your job, after all). If it really lead to your being fired, then you're better off working for someone who can appreciate your moral compass.
(Note that I'm ignoring cases where the ethical issues are more severe and clear-cut, like a CEO asking someone to do something that, while legal and within his rights, might end up hurting someone else's career or something. Then it becomes MUCH more grey).
Email systems (and voicemail for that matter) have over the years sporadically supported a feature that allows the sender to delete unread/unlistened messages. Sadly, I know of know OSS email system that supports this functionality.
Where I work, we use MS Exchange configured in Enterprise mode. There is a feature to allow unread email messages to be "recalled"; however, the implementation of the feature is such that each email-reader (User Agent) can disable the feature completely or disregard individual recall requests.
My personal use of the feature is most often to recall an email that contains an error. I then substitute a corrected version of the email. When this works, and the message is recalled successfully, it removes from my communication the possibility that the receiver will save the email that contained the bad data, and not save a follow-up email that explains the errors of the first email.
While some will argue that it is a user's *right* to be able to read every email sent to them, it is just as easy to construct an argument that until an email is read it is the sender's *right* to be able to un-send it. To my mind, anytime we can put in place technology that allows poeple to correct their mistakes (be they emotional mistakes or technical/informational ones) it makes it easier for us to all get along with one another. The less stress we inject into our workplace/relationships, the better!
How is this an ethical issue?
You were asked by the CEO to delete a message that the CEO himself sent. If the CEO asked you to delete messages from *someone else*, or to otherwise mess with other communications, that would certainly be an ethical issue, but that is not the case.
The corporate email system is not the US postal service, and deleting an email is not against the law (we aren't talking about tampering with evidence here). In fact, as a SysAdmin it certainly is within your capabilities and duties.
It seems like you were trying to teach the CEO a lesson (don't send hot-headed emails) by refusing his request. Instead, you were the one who was taught a lesson by being fired. Judging by the fact you are Asking Slashdot, it is one you probably haven't yet learned.
Beauty is in the eye of the beerholder.
Let me break it down to you:
Your boss asked for something.
You said no.
He fired you.
Read the above 5 time real fast, let it sink in nice and deep. Don't make the same mistake twice.
It is all fine and dandy that you want to live up to your ideals. It is your ideals that are flawed. Company server, company time, company resources. You were asked to do something, you did not do it. Fix your ethical issue by realizing that your trying to flex your own muscles.
Once you realize that your just a high tech janitor the better off you will be. Live and learn, but for christ sakes don't think you have any control because you don't. You want control, start you own company and push your ethics out that way.
Neck_of_the_Woods
#/usr/local/surf/glassy/overhead
Cat the mailbox, pipe through grep. awk/sed scripts for trimming/whacking mailspool come for the asking.
BTW. In the U.S. there is no guarantee of privacy for corporate e-mail systems. Period. End-of-question. This is until another court decieds otherwise.
If you want something private, use your disks, "your" wires, and your crypto.
"Flyin' in just a sweet place,
Never been known to fail..."
In my years as a sys admin there have been a number of situations where I've prevented a user from reading mail that has been delivered. Two spring to mind immediately. In one case, both a man and his son worked for the same company. The man and his wife were killed in a car accident. This information came out at work before the son could be told. I was instructed to monitor all the son's incoming mail and remove any condolence messages until the son could be found (I think he was traveling) and told about his parents. I could have more easily blocked all incoming mail, but the user would surely have noticed and called the Help Desk about it. So I archived the sympathy messages until he had received the news in person, at which time I returned them to his spool.
The other time someone accidently mailed a bunch of salary information to a large distribution. Thank heaven for single copy message store! I was able to delete it from everywhere fairly quickly. The guys who managed the file servers had a harder job, as they were required to search and destroy any attachments that had already been downloaded and saved.
Since these events one of my qualifications for a mail server is how easily a rogue mail can be excised from the message store.
Basically, I feel like this is one of those things that is part of your job. To say it's unethical is just silly. If the CEO had shoved an envelope under the door of the person's office, and you had had the key to the door, would you have refused to open it?
On the other hand, I totally understand leading users to *believe* that recalling sent messages is impossible. You don't want them to get into the habit of using you as a safety net! When push comes to shove, however, you do your job. Delete the mail and keep your mouth shut.
That said, assuming you were in otherwise good standing they should not have fired you for this. I imagine you could have had a pretty good unlawful termination suit had you been so inclined.
Sarah
As long as the employer has notified the employee that they monitor email, it is completely legal under the Human Rights Act.
http://www.itsecurity.com/papers/morgancole1.htm
http://news.bbc.co.uk/1/hi/sci/tech/957460.stm
Seems it's about the same in the UK, as is here. In other words tell them that you monitor the e-mail and you can read all of it.
I'd delete it. You don't have to read the rest of the guy's mail to do so, and so are violating no one's privacy. The mail system (pick any) doesn't have some sort of unimpugnable integrity. This is pretty much the equivalent of picking a sealed envelope with a pink slip in it up off of someone's desk, before they come into work in the morning, but after HR says they made a mistake.
I'd also tell the boss that in order to fulfill his request, I need a quick look at the original in his sent mail. I would then confirm that there were no BCCs, for obvious reasons.
Otherwise, barring some sort of registered email scheme, you aren't violating ethics or rules of evidence.
Certainly this isn't behavior to encourage in the boss, any more than building a mailserver and recovering a message store in order to recover an accidentally deleted message is. But if the dumb mistake isn't a habit, help both parties out.
As admins, we have to be able _not_ to see things that we shouldn't, and occasionally even to forget that we saw things. When you're helping a user troubleshoot their email, you'll see more about their personal lives than you would ever want to know. Those aren't things I speak about to no-one.
Don't tell me your password!
Assembly is the reverse of disassembly.
This phrase is your friend. I've used it to put off bosses who've asked for things that seemed dubious, like tracking web surfing habits of individuals from our proxy logs.
;)
Bottom line is if you say "I won't", the boss might fire you but, if you say "I can't, because..."[1] - and can be convincing[2] - you can get away with not doing unethical things.
-Baz
[1] eg 'editing the mail spool by hand would invalidate the CRC's on the mail files, and might bring the server down. I could try it, but we could lose everybody's email back to the last backup - its a big risk'
[2] warning - dont try this crap on a CEO who is also a techie
You should have used MS Outlook, it is the most ethical email system since it has the "Recall" feature. The CEO could have recalled the email without presenting anyone with any ethical dilemas
It's interesting you should mention this, because the designers of NT (and VMS) actually did consider that there are cases in which the administrator of a system should not have access to certain files on the system. For example, should the sysadmin have the ability to view or even edit the payroll file? Or HR records? Unix does nothing to prevent it - root has access to all files. On NT, however, any user can have an ACL that denies the sysadmin rights to access a file or folder, and can log attempts by anyone including the sysadmin to do so. Another difference is that on NT you have to "take ownership" of a file, but on Unix you can "change ownership" of a file. That means that if you change the ACL on a file you had no read access to to give yourself access to it, you cannot change it back to what it was.
There is a special privilege on NT called "Backup Operator" - it allows you to copy any file to tape, or back again, but does not let you read the file. The developers of Unix, in an academic environment, did not consider how the system would be used outside of that setting, and many of the architectural choices they made are ill-suited to the corporate world.
The SAGE Code of Ethics seems useful for this situation.
Canon 2, "A system administrator shall not unnecessarily infringe upon the rights of users", seems to apply to this particular case. The relevent portion is:
"System administrators will not exercise their special powers to access any private information other than when necessary to their role as system managers, and then only to the degree necessary to perform that role, while remaining within established site policies. Regardless of how it was obtained, system administrators will maintain the confidentiality of all private information."
I read that to mean that if there is a site policy regardign email, the ethical thing to do is to follow the policy. Failing the existence of a policy, the ethical thing to do is to not infringe on the rights of the users.
"The purpose of argument is to change the nature of truth." -- Bene Gesserit Precept
To make it look like it's going to be an all-night job that will take hours of your time and might screw up the mail server.
"I'll start on it now boss, but it's going to take several hours. I don't know what something like this might do to the mail server, it's not really designed to do this."
That alone should scare most people away from it.
If it doesn't, generate some random errors, turn off a few mailboxes and blame it on the 'manual deletion of messages outside of the normal messaging interface'.
Of course, you have to fix it quickly, and then you'll look even better.
At our firm we let new employees sign a letter before they start working that we archive ALL EMails they send. We treat Emails as business correspondence. We file letters that we send in an official capacity, EMails are the same.
Our sendmail server sends all mails going out (and coming in) to a central mailbox.
That said, we also provide peole with TWO addresses, one is private and is never tampered with, the other one is public and is put inthe files. They know this, and can decide which one to use to send the mails. We are also not anal retentive about sending personal mails and phone calls from work. I mean, they are people, not machines.
However, sending business mails under your personal account is frowned upon.
This systems works well and we never had any problems with it. Also, access to the central mail file is the same as access to business files in that only some managers may look into it. But generally business EMails are treated like any other busniess correspondence: filed as it should be.
This policy has helped us a lot when people leave, but they knew beforehand that their mailboxes are open.
The dangers of excessive individualism are nothing compared to the oppressiveness of excessive collectivism