1 Replies - 1096 Views - Last Post: 26 September 2019 - 01:05 PM

#1 Skydiver   User is offline

  • Code herder
  • member icon

Reputation: 7244
  • View blog
  • Posts: 24,556
  • Joined: 05-May 12

Rant: Security theater

Posted 25 September 2019 - 07:15 PM

WTF?!?! So I can't get full admin rights on my desktop machine as a developer even with manager approval and managers' approval all the way up to a VP, but any developer can simply request full local admin rights on any Production server with just his managers approval? They don't even bother checking with our manager if their developer should be allowed access to our machines?

So what if the Production machines handle PHI and PII of a few million users and the applications running on them is the lifeblood of the company. It's okay for J. Random Developer to have full control. We trust them. But grant J. Random Developer full control on their own machine where they are prohibited from testing with live data -- no way. Can't trust those guys.

Is This A Good Question/Topic? 0
  • +

Replies To: Rant: Security theater

#2 modi123_1   User is online

  • Suitor #2
  • member icon



Reputation: 15506
  • View blog
  • Posts: 62,083
  • Joined: 12-June 08

Re: Rant: Security theater

Posted 26 September 2019 - 01:05 PM

Security gets weird when down to the rubber and pavement cracks. Totes looks better at the 30k ft rarefied air.
Was This Post Helpful? 0
  • +
  • -

Page 1 of 1