For the moment, I am not asking you what you think is good policy.
For the moment, I am only asking for feedback on my intended style, to introduce policy in an organization that formerly had none. I'm looking for perspective outside my own brain and eyeballs. Please imagine you are a user, in a company with no policy. You probably keep your password secret, at least most of the time, because you probably think that makes sense. But not everyone does. You probably only pirate tiny little softwares, like winzip, which you're easily able to use without getting caught. But somebody might be pirating big stuff like autocad. And so on. There's probably no porn, but who knows... You get the idea. In other words, everybody is free to simply make all their own choices. As soon as any new rules are introduced, I would anticipate, users will object and feel restricted. Nobody likes giving up freedom they already had. So my goal is to introduce new policy in such a way that users feel willingly compliant. Hopefully even the extremists will be willingly compliant, but if not, they're going to have to take it anyway. So my strategy is this: I created a mailing list, similar to the one you're reading now. I invited everyone to join it, with the following invitation: (Actually, I'll post the invitation in a separate email. I think it's more effective that way.)
_______________________________________________ Discuss mailing list Discuss@lopsa.org http://lopsa.org/cgi-bin/mailman/listinfo/discuss This list provided by the League of Professional System Administrators http://lopsa.org/
