Most IT Pros Have Seen Embarrassing Information About Their Colleagues

An anonymous reader writes: Often working in isolation, IT teams are still considered to be supporting players in many workplaces, yet the responsibility being placed on them is huge. In the event of a cyber attack, network outage or other major issue, they will typically drop everything to fix the problem at hand. Almost all the respondents (95%) to a new AlienVault survey said that they have fixed a user or executive's personal computer issue during their work hours. In addition, over three-quarters (77%) said that they had seen and kept secret potentially embarrassing information relating to their colleagues' or executives' use of company-owned IT resources.

Managers are dumbasses

News at 11?

(Most just got to management by being born with the right connections or playing sleezy, not by being smart. So it's always hilarious for me when I, the lowly tech guy, finds out my boss is having an affair or has a strange fetish, both true stories. Didn't tell them, of course, but I never looked at them the same way afterwards.)

Re:Managers are dumbasses

[Daemonik]

That's a pretty stupid comment. Their customer saw the flash drive full of porn, there's no going back from that and saying "Oh, this is just Bill's personal thumb drive, we the company don't support this". Why did Bill have his wank drive at work in the first place? Is he in the server room marking the servers as his like some animal?

Don't bring porn to work. Don't share it at work. It's not that difficult a task.

Re:Managers are dumbasses

[houghi]

Do you think management are the only ones who are dumbasses? People are dumbasses. All of them, including me.

I have known of company secrets because the IT people where dumbasses. If I type a command I should NOT get a list of all the passwords the people use. In plain text. When I do not work in IT.
I have seen extreme high level secrets due to failing IT people. At one time I had access to ALL areas including those that I should not have had access to. Reaction from IT when I told them? "If you have access, somebody thinks you must have it, so you got it." How is that for being a dumbass.

So please get of your high horse, you are nothing special. I have had stupid managers who were capable of nothing and responding to EVERY question with "Please ask houghi" and protected by N+2. ObviouslyN+1 was fired when N+2 had to leave.
I have had managers who were great at what they were doing, yet did not had my knowledge, because that is why they had me. I have had people working for me. Some smart, some stupid. As a whole, some people are smart and some people are stupid.

I have know about afairs on several levels and all I was interested in was if it would affect the job. If not, I had as much interest in it as in whomever is on the frontpage of the tabloid. Unless they were friends, I would treat them as proffesional as always and who they have sex with is none of my business, regardless of their function.

I even had one manager who felt he needed to explain that the rumours of his afair with another manager were not true. I told him I do not care if it true or not. And to this day I do not know if there was some truth in it or not and I do not care.

I often am the person people feek the need to tell secrets to. They think it is because I can keep a secret. The real reason is that I do not care. I do not even exclude myself of being stupid and a dumbass. I have done some stupid things. Some where I was lucky not to get fired for.

So please when you say managers are dumb, please do not exlude the rest of the people.

Preserve the 3monkeys ethic

[TheRealHocusLocus]

It's become a harsh world for the thee monkeys. I'm referring to the monkeys Mizaru "see no evil", Kikazaru "speak no evil" and Iwazaru "speak no evil". In the days of written letters there were seldom times when one was professionally compelled to witness the private thoughts of others. Now we have mailboxes and photos and browsing histories scattered on disks. Every popular program that manages information wants to slap it all up in your face as soon as possible.

The 3monkeys problem doesn't relate to knowing or discovering passwords, unlocking access. You're perfectly free to flaunt your prowess as a fixer or safe-cracking locksmith. Good 3M compels you remain unaware of the contents of the safe after you have opened it.. After a successful IT job are you in a position to honestly say not a single photo (or thumbnail) was displayed, not a snippet of private text was displayed, even for a moment? If not,then (perhaps) there are ways to refine the technique.

As a PC tech I started to imagine it as sort of a game, where you lose points if you see anything private. When forced to run programs to see if they were functional, I'd de-focus my eyes and could see that something was there, good enough. When cleaning viruses or upgrading I preferred to invite the customer in to run all the necessary programs to ensure their data was there.

In the Internet age it went massive. Someone is always root on machines that store hundreds of thousands of mailboxes. I started a Freenet and have run two ISPs and I have never peeked into anyone else's email unless directed to with immediate consent. Even then rarely, and not without a bit of nausea. Why? Because It is just too damned easy... in the same sense that pulling a trigger is easy. So early on I have programmed myself that way. If you pick up a gun you won't hold it by the trigger. As an administrator, I won't pick up your account by its email.

In the early days of mailboxes, Sendmail and queues when solving problems meant shuffling mail around sometimes rewriting portions of headers, it was a simple as using grep and using well-tested scripts to avoid seeing content. Many things were block and line-oriented ASCII. Not so easy today, when everyone loves to embed their favorite database solution.

Imagine that you have been called in to de-virus and recover data on a PC. You have been offered handsome pay for your work, but as you work you realize there are two men standing behind you with telltale bulges in their suits. They are watching you and the screen in front of you very intently. You sense that there's something on that PC that could put you in a bad way, should they catch a glimpse of it. Could you complete the job without... incident?

Developers of software that manages people's secrets should always consider the plight of the 3monkeys IT worker. This could mean a command-line utility, as prevalent as a standard uninstall procedure (ahem!), that is guaranteed to sift through and verify all functional areas of the program and its data store, and in the end give only total statistics of content --- enough to see that you have not reverted to an empty database. It would be good to provide this utility.

Some day, someone's life may be at stake.