undefined | Better HN

0 pointssamcat1162y ago0 comments

> new laptops that are preinstalled with Okta’s management system

Okta doesn't make device management software, thats made by companies like Jamf. Okta can integrate with them but Okta isn't what manages your laptop at all.

> I wasn’t willing to use Okta’s login system if I have my own personal passwords or keys anywhere on my work computer.

Do not do this, its not a personal device.

0 comments

michaelt2y ago

> Do not do this, its not a personal device.

You think nobody's logged into their personal spotify on their work computer? All those guys wearing headphones in the office have brought in CDs to play in their laptop CD drives?

And that business traveller away from their partner and kids for a week+ isn't going to video call them? Or watch some netflix in their hotel room in the evening?

That's so unrealistic, you could write IT security policy for a Fortune 100 company :)

rthomas62y ago

Not until just now I didn't. Do they not have a smartphone? A personal laptop? I'm waiting for something to build as I'm typing this right now. On a separate computer. I would never go on Hacker News on my work computer.

Why would I use a device to do personal things that they MITM everything I do on it? Privacy is too important to me to give it away like that. I'm sure all traffic on the corporate network is logged. Why open myself up for grounds for termination if my company hits hard times and wants to lay people off?

michaelt2y ago

If you're sitting in the office waiting for something to build, and you get out your phone to go on HN I'm sorry to say that is probably not the sort of professionalism that's going to afford you much protection from layoffs.

2 more replies

dylan6042y ago

> All those guys wearing headphones in the office have brought in CDs to play in their laptop CD drives?

I've worked for large media companies where this is exactly the only way to have music available. The production network was blocked from accessing the www. To ensure content wasn't pirated, the original media had to be used. No CD-Rs were allowed. Personal devices were kept in lockers outside the restricted areas, so no streaming from them either.

Email was from a remote session. If you were emailed an attachment necessary for production work, there was an approved workflow to scan the data and then make it available to the production network.

So, while you were trying to be sarcastic, there are networks that are set up exactly like you thought didn't exist because it was too outlandish.

Symbiote2y ago

Presumably the company then takes on the task of passing personal messages from outside to their staff, e.g. if a school phones to say a child is sick.

1 more reply

dalyons2y ago

In the last 10 years? Outside of govt? That sounds horrifically inefficient for 2024

1 more reply

0cf8612b2e1e2y ago

Parent didn’t say nobody used the device for personal actions, only that they refused to do so. Which is the only reasonable stance. Especially for well paid engineers who can trivially afford a dedicated device.

midasuni2y ago

I’ve had company devices for over 20 years. I’m currently on the way back to my hotel.

I refuse to carry more than one phone or one laptop, and I sure ain’t brining a personal device into a country I wouldnt go to on vacation.

autoexec2y ago

Totally agree on travel. If I'm getting on a plane for work I don't want to bring my own devices. I can't even trust that my own country won't steal/copy my devices at the border.

DANmode2y ago

> I refuse to carry more than one phone or one laptop

Footgun, but maybe tolerable with your chosen threat model.

da7682y ago

Nothing a smartphone can't do.

Even companies with these policies preinstall Spotify on work computers.

prg202y ago

> You think nobody's logged into their personal spotify on their work computer?

I don't think anyone thinks that. No one also thinks logging into a personal account on a device owned by someone else gives you any claim of ownership over it.

The computer belongs to the company. You will do what the company says you need to with their computer.

DANmode2y ago

Hiring people who don't understand technology to build your technology: my path to the Fortune 100 List.

xmcqdpt22y ago

All your examples are blocked on my employer's network. So yeah.

AeroNotix2y ago

I use two laptops.

derivagral2y ago

> Do not do this, its not a personal device.

Agreed, but I knew many devs in my career who mix personal stuff into work hardware. Maybe its just spotify/pandora, maybe some HR thing they needed their personal gmail to make it easier.

This included "senior" and other levels, it isn't just ppl out of college.

j / k navigate · click thread line to collapse

0 comments

michaelt2y ago

> Do not do this, its not a personal device.

You think nobody's logged into their personal spotify on their work computer? All those guys wearing headphones in the office have brought in CDs to play in their laptop CD drives?

And that business traveller away from their partner and kids for a week+ isn't going to video call them? Or watch some netflix in their hotel room in the evening?

That's so unrealistic, you could write IT security policy for a Fortune 100 company :)

rthomas62y ago

michaelt2y ago

2 more replies

dylan6042y ago

> All those guys wearing headphones in the office have brought in CDs to play in their laptop CD drives?

Email was from a remote session. If you were emailed an attachment necessary for production work, there was an approved workflow to scan the data and then make it available to the production network.

So, while you were trying to be sarcastic, there are networks that are set up exactly like you thought didn't exist because it was too outlandish.

Symbiote2y ago

Presumably the company then takes on the task of passing personal messages from outside to their staff, e.g. if a school phones to say a child is sick.

1 more reply

dalyons2y ago

In the last 10 years? Outside of govt? That sounds horrifically inefficient for 2024

1 more reply

0cf8612b2e1e2y ago

midasuni2y ago

I’ve had company devices for over 20 years. I’m currently on the way back to my hotel.

I refuse to carry more than one phone or one laptop, and I sure ain’t brining a personal device into a country I wouldnt go to on vacation.

autoexec2y ago

Totally agree on travel. If I'm getting on a plane for work I don't want to bring my own devices. I can't even trust that my own country won't steal/copy my devices at the border.

DANmode2y ago

> I refuse to carry more than one phone or one laptop

Footgun, but maybe tolerable with your chosen threat model.

da7682y ago

Nothing a smartphone can't do.

Even companies with these policies preinstall Spotify on work computers.

prg202y ago

> You think nobody's logged into their personal spotify on their work computer?

I don't think anyone thinks that. No one also thinks logging into a personal account on a device owned by someone else gives you any claim of ownership over it.

The computer belongs to the company. You will do what the company says you need to with their computer.

DANmode2y ago

Hiring people who don't understand technology to build your technology: my path to the Fortune 100 List.

xmcqdpt22y ago

All your examples are blocked on my employer's network. So yeah.

AeroNotix2y ago

I use two laptops.

derivagral2y ago

> Do not do this, its not a personal device.

Agreed, but I knew many devs in my career who mix personal stuff into work hardware. Maybe its just spotify/pandora, maybe some HR thing they needed their personal gmail to make it easier.

This included "senior" and other levels, it isn't just ppl out of college.

j / k navigate · click thread line to collapse