Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Securing workstations from IT guys

from [Ansgar -59cobalt- Wiechers] Network Security [Permanent Link]
Subject: Re: Securing workstations from IT guys
Date: Thu, 29 Nov 2007 21:35:51 +0100 
On 2007-11-29 Vandenberg, Robert wrote:

On Wednesday, November 28, 2007 1:02 PM Eric Marden wrote:

But a keylogger seems more than lazy, in my opinion.

If you can't trust the employees, then fire them.


Nice if the world could be that easy.


It is that easy. Really. If you distrust a person to the point where you
have to resort to that kind of surveillance: fire them (or don't hire
them in the first place).


But nowadays in our litigious society, not going through a through
investigation before taking the appropriate actions is going to invite
a wrongful termination lawsuit.


Using keyloggers is leaving "thorough investigation" in the dust.
Besides, nobody said the termination had to be without notice. You can
always release them from their duties and expel them from the company's
premises. Certainly not the cheapest option, but an option nonetheless.


It is better to have all of your ducks in line and get all of the
evidence you can before you bring the offending party in and fire
them.


Using inappropriate means to gather evidence is like handing your
opponent (or his lawyer) a loaded gun.

Regards
Ansgar Wiechers
-- 
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Replaying TCP Traffic, hackman
Next by Date:  RE: FW: Securing workstations from IT guys, Craig Wright
Previous by Thread:  RE: Securing workstations from IT guys, Vandenberg, Robert
Next by Thread:  RE: Securing workstations from IT guys, Nick Vaernhoej
Indexes:  [Date] [Thread] [Top] [All Lists]