Cutting Security To Cut Costs?

just currious asks: "I work for a large company (10,000+ pc's) who recently out sourced the help desk. After looking at about a year's worth of data we find the 30% to 50% of the calls to the helpdesk are password related (password resets, password changes, etc.) this is alot of calls (at 20+ dollars a pop). Now they want to reduce cost by cutting security, since if you don't have a password, you can't forget it. So here's what upper management wants to do: remove the security from all of our Windows 2000 machines. Has anybody else seen security cut just to save money?"

Wouldn't work in Europe

[NeoEinstein]

Here in Europe, some countries have laws sayingthat the management is liable if the get broken in (cracked) and the IT security was too lose ! That's the only language Managers are understanding, so I think it's a good idea, no ?

Re:give and take

[gnovos]

it depends on whether or not there's anything worth keeping secret on the machines;

NO! This is a fallacy. It doesn't matter if you have the last remaining digital copy of the secret FBI UFO cover-up or just your grandmother's recipies, your computer itself is still a resource that a hacker would love to use.

You machine could be hijacked and used for all sorts of nefarious purposes from DDoSing script kiddies to breaking into banks to being an staging point for a credit card fraud scheme or a terrorist network...