Not that you guys need the reminder, but your work sees all your browser history and you may not even be able to delete it if you wanted to

@t0fr@lemmy.ca · 11 months ago

Not that you guys need the reminder, but your work sees all your browser history and you may not even be able to delete it if you wanted to

@Deathcrow@lemmy.ml · edit-2 10 months ago

My work has a 100% mandatory vpn and mitm proxy for ssl scanning

These are worse than useless. They are anti safety. If this box or its private keys get compromised ALL tls traffic of all employees is immediately plaintext.

Any company that buys one of these appliances from mcafee or whatever is asking for it (losing most/all their secrets)

@AstridWipenaugh@lemmy.world · 10 months ago

That sort of thing is required for a lot of enterprise certifications. When you do work for government, healthcare, banking, etc. stupid “security” is mandatory for checking off compliance requirements. Not that any of it has to be in any way effective…

@Deathcrow@lemmy.ml · edit-2 10 months ago

when breaking the internet and end-to-end encryption are part of any kind of “enterprise certification” that certification is worthless (or worse) and probably some kind of chinese or russian (or the CIA or whoever, certainly not your friend) psyop. Only a mindless idiot would implement it.

@Lyricism6055@lemmy.world · 10 months ago

Oh I 1000% agree. But you try to convince my opsec colleagues