I still don't understand what happened here. Or what the requirement was exactly. How can they force you to install software on your machine when as far as they are concerned, you don't even have logins or anything?
If they are investigating attacks and suspecting you, and if it was you, then surely you wouldn't offer up the details to the machine you used? WTF is this thread?
It's company policy. Everyone needs to do it. No exceptions. I'm all for the rules as I know how important security is and how a Business can be crippled or even closed down permanently. How ever the Security consultant took chances and made recommendations which are of no use. And will have no effect on the integrity of the company's network. All to bag some extra coin, As they rent out the software on a per person license base...
I'm sure the true nature and use of the software evades management completely as they are not skilled or educated in computer systems and/or Computer Security.
I feel for these guys as they are duped into something they spend a great deal of money on. But they don't listen to employees complain to them. We just need to bare with the problem and no way to fight it. That is wrong.
In life you deal with a Problem by sorting out the Cause. Not by ignoring it and steamrolling ahead. This is the quickest way to Close your doors. We were mighty. We were the strongest. Now every startup with a semi plausible idea scares the crap out of me.
All in all this is a Management problem Wrong Policy combined with uneducated staff/poorly educated staff.
This can only end in disaster.
Oh and once the software is on, it is on...There is no way to remove or disable it. Short of hard formatting the whole machine.
I have found a way to remove it. But the damage it does is permanent. And there no way to restore any setting it has changed.
This is completely acceptable in a high secure network where all equipment needs to be constantly monitored for breaches or illegal software loaded or accessed. even our browsers are blocked. You cant do didly squat on the Infected machine.
Now take a Hike. MY PC, I pay for it. I will bloody well run anything on it I want. If I want a virus then I will Load a Virus. If I want keyloggers to make the Chinese very negative then I want a Keylogger.
If I want to run a torrent then I want to run a torrent. Not everything is illegal. I paid for all my usual software packages. Windows, Office ect ect. Then they tell me oh no sorry you need to buy this. you need to use that. this might have a problem next month sorry you have to buy everything over again if you don't like it get another JOB.
Well since it is my Personal Equipment I can run anything on it I want. As long as I stay out of Kitty porn and not draw the attention of the CIA and FBI I will be fine. That is pretty much my hard limit.
