On Fri, Feb 19, 2016 at 03:12:54PM +0000, Edward Ned Harvey (lopser) wrote: > Suppose a company has a policy about permitted use of the company laptops and > internet, but you have suspicion that some user(s) are using it for illicit > purposes such as porn. You've already taken measures to prevent accidental > access - content filtering firewall, dns filtering, etc. > > You want to take reasonable steps to prevent misuse, but you also want to be > alerted and catch people, if they try to misuse it. Can you name any > products? I'm thinking either some agent that runs on pc's, or something that > monitors network traffic and triggers alerts. > > I'm fully aware of the need for caution in how such tools are applied - both > in terms of respecting peoples' privacy, and legal rights, and distinguishing > accidental misuse and false positives from real violations.
Since you have a policy and have taken reasonable steps to enforce it, you can have a senior company official send out a message to all employees reminding them that violation of the policy is a firing offense. Repeat annually and feature prominently in new-employee training. Then you sit back. Either someone will get caught in the normal course of events, or they won't. If they don't, it doesn't really matter. When they do, you fire them. Normal course of events include: - hey, who's sucking down all that bandwidth? - hey, who's using all that storage space? - desktop/laptop maintenance - desktop/laptop upgrades - and, unfortunately, complaints from staff While Justice Potter knew porn when he saw it, computer programs aren't so good at it. They tend to rely on blacklists... and you already have those. -dsr- _______________________________________________ Tech mailing list Tech@lists.lopsa.org https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
