Slashdot Mirror
Unlock Internet or Risk Losing Staff?
Dan Warne writes "People don't want to work for employers who heavily restrict internet access, a senior Microsoft executive said in a keynote speech at the opening of Tech.Ed 2006 Sydney today. From the article: 'These kids are saying: forget it! I don't want to work with you. I don't want to work at a place where I can't be freely online during the day," said Microsoft Senior Design Anthropologist Ann Kiera. She dubbed internet-wary employers "digital immigrants" and said the new wave of younger workers were "digital natives".'"
Now this statement isn't true at all. Anyone who has ever worked in network security realizes what a complete nightmare this is and that "technology" is having a hell of a tough time keeping up. This article is completely dismissing security as the reason for blocked websites. Leaky browsers and constantly exploited new technologies have made security a serious priority. (I'm not even gonna go into the irony that these comments were made by Microsoft execs...)
A company I had worked for recently had systematically blocked most popular online services over the past couple years. Myspace, hotmail, AIM, gmail... And I see the reason behind it considering we were in a sensative compartmented information facility that restricted external communication (not even allowed to have a cell phone). The company couldn't afford to have a large-scale information leak caused by viruses and/or non-secure communication.
However, there were always ways around. I could still check my old college email through their website, which was not on the restricted list. There were endless forums that were also left unrestricted (they left slashdot alone, thank god). And there was recently an incident within the company recently where someone was fired for pornography. So the general frustration stemmed from the fact that people could still spend all day on forums and looking up porn, but I wasn't even allowed to check my gmail, update my myspace, or send an IM. However, I'm sure the company would've like to block every forum, porn site, and web-based email site if they could. It's just not something that is in any way possible.
At any rate, I don't think most companies are blocking these sites because they are seen as unproductive, but rather for the risks that they pose.
--
"A man is asked if he is wise or not. He answers that he is otherwise" ~Mao Zedong
Capitalism: When it uses the carrot, it's called democracy. When it uses the stick, it's called fascism.
The issue of internet access at work and its use is a curious one. We have been allowing people to use the telephone at work for years in a limited fashion. As long as it didn't invade the work day too much it was sort of accepted. It also generally wasn't recorded.
Internet is just telephone communications. No different. Treating it differently isn't wise. The employers are right though if the use gets out of hand.
There is of course the problem of not knowing what browsing is legitimate anyway. This isn't easy to determine either. Remember that clicking on a link might be accidentally the wrong one or you might be searching a topic and get one of those trick sites listed for the Porn types. It isn't really a matter of any or filters, it is a matter of content and time.
Never Politically Correct ~ I prefer the facts If you don't like what I say, get a life, or comment yourself.
First there was Chief Hacking Executive, now Senior Design Anthropologist? What next? Chief Chair-Throwing Gorilla? Oh wait...
So normally I sit down with a goal, I think about how to go about implementing it, I bang out the code, and then I have a few minutes of downtime (sometimes more) while the damn thing compiles. Now most of the time I use this time to think about the next step of the problem, or to jot down notes of possible issues to take a look at, or to finally get around to answering e-mails about other issues in the code, etc. but if none of these are pressing then I don't feel guilty at all browsing around online for a few minutes. As I write this I'm waiting for my first build of the day to finish so I can get started.
The quote was taken out of context. Here is the full exchange.
Employer: Of course we have Internet, but our firewall restricts access to "inappropriate" sites during working hours.
Kids:Forget it! I don't want to work with you. I don't want to work at a place where I can't be freely online during the day. I'll just move back in with my parents and use their DSL.
Parents: Sure, OK. What do you think would be a fair rent?
Kids: Rent? Where are we suposed get the money to pay rent?
[parents and employer exchange significant glances]
Parents: Umm, honey, I don't know if they explained this in school. "Work" is the eight hours out of the day when you do things you'd rather not be doing so you can pay for things like food and rent.
Employer [taken aback]: Eight hours?
Post may contain irony: discontinue use if experiencing mood swings, nausea or elevated blood pressure.
What I think is funny is that most people here are posting from work.
I see this all the time at my company, and in the long run, it leads to burnt-out employees. We've had much more success with staff retention and productivity my asking that employees do not work from home (to the point of canceling almost all of our GotoMyPC accounts), do not stay late (with exceptions, of course). If employees want to get their work done, they've got to do it during the work day. If they don't, well, they face the same situations that most employees who fail to meet their objectives face...
Work is work. As an employee (and this is the part of the legal definition according to the IRS, btw), your employer has the right to tell you how and when you do your job. If you want to work on your own schedule, you should be freelancing or consulting.
"Trolls they were, but filled with the evil will of their master: a fell race..." -- J.R.R. Tolkien on Olog-hai
As a sysadmin myself, I was put in charge of our Internet security and web site filtering strategy.
Initially, they implemented a Squid proxy that was set up so either you were granted "completely unrestricted" access, or "restricted" - which meant you could *only* visit web sites in an "allowed" list. The "unrestricted" access was, of course, originally only intended to be used for the sysadmin himself, and perhaps the owners of the company.
What ended up happening over the years (before I ever worked for them) was "key" people in many different departments received "unrestricted" access, because they threw huge fits or became too big a drain on the admin's time - asking for access to slews of sites needed for puchasing, getting price quotes, etc.
After looking at a number of options, I ended up using Dansguardian site filtering combined with Squid. The cost of software licensing or subscriptions was zero - making it MUCH easier to get approval for. (And if it didn't work out, nobody was going to "force" me to keep trying to use a broken solution, just because we spent $$$'s on it already.)
Our goal was always to put the brakes on productivity losses (and even to prevent potential lawsuits stemming from someone viewing porn and another employee being offended at seeing said porn, or what-not). As has been proven time and time again, unless you completely deny someone Internet access, he/she can eventually find ways to get to sites you'd rather not have them using while at work. The idea is to implement a solution that stops as many "grave offenses" as possible, while appearing pretty much invisible to regular Inet users.
I've found that a nice "side benefit" of doing this is the fact that you also tend to screen out some of the biggest contributors to loading spyware and other nasties on people's PCs. (Porn sites are a big offender in this area, for example.) But no, we didn't get into the site filtering as primarily a "computer security" issue at all.
I'm an ICT teacher, and recently went to a conference where there was a presentation about so-called Digital Natives (today's kids) and Digital Immigrants (adults).
/. crowd) a 'Digital Native', despite my age. Plus, for every kid with 'techno-joy', there will be another with 'techno-fear' (to paraphrase Mr. Izzard).
Apparently, the fundamental difference between us old-fart teachers (I'm 25, by the way) and today's kids is that they have grown up surrounded by technology to such an extent that their methods of working and interacting with others are totally different to ours.
For example, today's children are likely to be much better multi-taskers. They are used to an environment where the television is on, they are typing to friends using IM, chatting to other friends on the phone whilst simultaneously using Wikipedia to research that night's homework. That feeds back into today's classrom environments, because some kids can't cope without a busy, multi-tasking environment. Their idea of hell is to be sat in silence for an hour trying to revise, or working solidly on a piece of coursework without taking time-out to do something else every other minute.
All in all it was an interesting presentation, but I felt the speaker's idea that the dividing line is purely age based was nonsense. I'd consider myself (and I' d imagine a lot of the
I currently have all non-work related internet access shut off in my company. This is not because I wish to, or because management is paranoid or whatnot. It's becuase of the Payment Card Industry Cardholder Information Security Program. It states that if any company that accepts/processes/stores/handles credit card information HAS to lock down interent access. Failure to comply with this program could lead to losing your merchant account or fines of up to %$500,000 per instance of fraudulent credit card use. I would love to let my employee's check the news/e-mail/slashdot, but unless this regulation is modified or done away with completely, I can't afford to take the chance. For more info on this see www.visa.com/cisp. BTW, my company actually does enough credit card volume that we have to have security audits, even though we've never had an instance of fraud. Open internet access would fail me on the audits.