One from my husband...
We were discussing (ok, complaining about) passwords and all the usual rules that big companies put in. In my company, we have one corporate website that no-one uses, and we have to change our passwords every three months. Of course, what actually happens is that everyone forgets their password, gets the reminder to change it, and then has to phone IT to get it unlocked so they can change it. Sigh.
Then husband gives me a story that actually made my jaw drop.
Their company IT person is useless...I will try to get him to tell the rest of the stories sometime! Basically knows nothing about IT and no one is sure how on earth she got hired for the position. Deleted chrome to try to get husband's computer to run faster...unfortunately, acrobat doesn't work either, and the updated version of chrome wouldn't install, amongst other issues due to her 'clean-up'. He said it took three hours to get something running so that he could open PDFs.
So, they have to change their passwords every six months. IT person sends an email round reminding everyone of this, and also reminding them that the passwords have to be secure - letter/number combination, more than 8 characters, the usual stuff of no pet's names and birthdays.
Then, on the bottom of the email, a reminder to everyone to send IT person their ID and password, so that she can get access to their computer if they are away for any reason.
This is a person with admin access, who can therefore reset passwords if she needs to. Husband said cheerfully that she probably has no idea admin access even exists, and wouldn't know how to use it even if she did know.
And then the kicker, that made me : all these user IDs and passwords...are stored on a spreadsheet. On the company drive, so that if anyone needs to get into someone else's computer while they're away, they can access it.
IT person sees nothing wrong with this arrangement.
I told him to start looking for a new job.
We were discussing (ok, complaining about) passwords and all the usual rules that big companies put in. In my company, we have one corporate website that no-one uses, and we have to change our passwords every three months. Of course, what actually happens is that everyone forgets their password, gets the reminder to change it, and then has to phone IT to get it unlocked so they can change it. Sigh.
Then husband gives me a story that actually made my jaw drop.
Their company IT person is useless...I will try to get him to tell the rest of the stories sometime! Basically knows nothing about IT and no one is sure how on earth she got hired for the position. Deleted chrome to try to get husband's computer to run faster...unfortunately, acrobat doesn't work either, and the updated version of chrome wouldn't install, amongst other issues due to her 'clean-up'. He said it took three hours to get something running so that he could open PDFs.
So, they have to change their passwords every six months. IT person sends an email round reminding everyone of this, and also reminding them that the passwords have to be secure - letter/number combination, more than 8 characters, the usual stuff of no pet's names and birthdays.
Then, on the bottom of the email, a reminder to everyone to send IT person their ID and password, so that she can get access to their computer if they are away for any reason.
This is a person with admin access, who can therefore reset passwords if she needs to. Husband said cheerfully that she probably has no idea admin access even exists, and wouldn't know how to use it even if she did know.
And then the kicker, that made me : all these user IDs and passwords...are stored on a spreadsheet. On the company drive, so that if anyone needs to get into someone else's computer while they're away, they can access it.
IT person sees nothing wrong with this arrangement.
I told him to start looking for a new job.
Comment