Why YSK: It appears several Lemmy Instances are flagged as suspicious and at least 1 instance intentionally using the name of ransomware. A couple of the big enterprise monitoring suites (Fortiguard, ZScaler) will flag your account and may end up with you being pulled into an office for an explanation, or worse.
TL;DR: Keep browsing to your local instance at work for now.
Yeah let me just install and use this 3rd party software on a company network…
You use a VPN on your own phone. Accessing any web site unrelated to work on your work computer is beyond retardation.
I would argue the same for using company WiFi. Definitely use a VPN if you have up use their connection but mobile data is better.
When I used to work in an office, I’d always use wireguard to tunnel my traffic on my phone back through my home IP. Got to use their wifi and still maintain my privacy
This is even easier now with tools like tailscale
I’m glad my work doesn’t care what I do online as long as I get my shit done. It’s not the highest paying job in the world, but perks like that keep me there.
Not caring what you do on your pc, within reason, is not the same as not monitoring for dangerous actions that could endanger your network or company (and client data). I don’t care what my colleagues do on their pc either. As long as it doesn’t cause me more work.
Logging security incidents is work. So we do block a lot of websites and keep an eye on what you try to run. If we see something wrong we just talk to you and explain why we don’t want you to do that. 99,9% of the time everybody is happy after that.
The idea of this being something you can get fired for or that’s taken into consideration for your evaluation is insane though. We have rights as workers. Keeping the network safe means I can see some extent of what you do. Your boss or their boss has no right to that information unless you state you will continue endangering the network. Even in that case I wouldn’t even tell them the websites tbh.
Pro tip: Don’t do not-work stuff on work owned hardware.
Or while connected to work networks
I used to sign in to my personal accounts on my work computer. And then a place laid me off and remotely locked the computer before I could sign out of anything, and I realized I had been stupid.
Now I just use my phone. But I also work from home so there’s no one to creep on me and report I’m looking at my phone instead of click clacking away.
Things like gmail let you log out everywhere all at once. But since you are at home now, third monitor for the home pc.
Or KVM.
Protip use anydesk to connect to your own computer remltely and do personal stuff from there. Then the only link to be severed is anydesk, which can be protected by password and 2fa
Pro tip, use KVM switches and USB mouse movers. Also if your work is hardcore enough to restrict software… Just RDP to your home computer. But I leave no trace of my slack on my work machine.
Why in the heck would anyone browse any social media on your company machine?
That’s the whole reason I left Reddit because it forced me to have to use Reddit on a computer and it’s one of the first things I remind new hires not to use social media on company property, it’s always monitored from keyboard to Internet connection.
Good lord people…
I used to do social media marketing for a company. I used a company computer for that ¯\(ツ)/¯
Your ¯\_(ツ)_/¯ is missing several limbs, but at least the armpits are bushy.
Because it’s fine?
Yeah some companies might monitor what you do but:
a) It’s not that common or not that detailed as some people imply it
b) It’s mostly for detecting malware or breaches, they don’t care about your social stuff.
c) Most people just check normal stuff in social media nothing to worry even if somebody from works check it
d) People have downtimes, checking Twitter or similar for a little while it’s not a firing offense…
e) Most of the time is not checked by anyone except if something flags it. Which again usually is set for malware and breaches not if you spend x time on YouTube or Twitter…
Yeah…use your phone if you can… But some people are painting this as the end of the world like the untouchable the forbidden fruit.
Coming from IT:
A: Disagree; it’s logged, analyzed, and stored in the name of efficiency.
B: Yes, but also no. Stopping malware is the original idea. But why would a business stop there when they can pressure 2% more time out of you by assigning ametric for everything?
C: Fair
D: It is if there’s budget cuts/Boss dislikes you. Leaving evidence of you not working on company time can be an anchor around your neck.
E: Yes, until no. See D.
I agree using work internet for personal shit isn’t career suicide, but it just opens the door for shit that isnt needed. Frivolous work internet usage is an example of “Free to those who can afford it, very expensive for those who can’t”.
Just use Data if you can, or shitpost after your shift
Good thing I live in a country where it’s forbidden (unless everyone approves of it, which if course almost never happens) that they monitor everything.
Sure internet movement could be looked up but even that needs to be because if a specific reason. They cannot just randomly look up everyone’s browser history.
I browse on my phone using data, I refuse to use company computers or wifi for anything that isn’t work related exactly for this reason.
And this is why I always use a VPN on my phone.
WFH FTW.
Never attach a personal device to a company network!!!
i only browse on my private phone which is not connected to wifi
Why do people use work computers anymore when cellphones exist?
I worked for a small earmold company that made hearing aids and plugs. The PC I used had zero security. I decked it out with every possible imaginable tool to make my job easier, even had it where I could vpn in and do work from home, and while I didn’t utilize this feature, the ceo’s son did after I told him about it for a few weeks after I quit.
Our HR manager constantly asked for email counts each day, so I automated a spreadsheet for her. I set a webcam up in an office with a laser engraver so I knew when the staff would put molds down for engraving without being in the room. I had syncthing cloning directories and a virtual desktop. I’d often model blender models on lunch and sync them back to my nas. Sometimes I’d make custom things for the company, then 3D print them and bring them in the next day.
I had waaaasay too much power, though. I could go pick through the company samba server, look at anything, potentially delete everything. They kept backups on dated copies made on external drives and deleted everything four years old.
They might work in a place that doesn’t allow personal electronic devices (government, military, high-security site, etc.).
I have a work account on programming.dev, using the internet for work is pretty common.
I don’t even connect to my work’s wifi
See I’d connect, but it would be on a VPN the whole time.
I’m visiting other companies for work every now and then.
If they are in a fancy new steel-and-concrete office building with open space offices, chances are that cell reception is very bad. I once was in an office where I’m certain they had installed cell blockers on the toilets.
I think my workplace had that until they realized that it also stopped management from being reachable. Fucking lol.
deleted by creator
Phone got small screen. Computer got big screen.
My work laptop just got replaced, and what’s great is the dock that came with it. It only connects to my laptop thru a USB C. So. Now I unhook my laptop, and plug my phone into it, which uses Dex. It’s like Samsung’s own desktop OS. And I can use my big screens and keyboard and mouse
I also make sure my phone isn’t using the network cable plugged into it and only use my own internet. I don’t think it’d let me anyways
How do you like dexs? Would you consider using it as a daily driver? I mean not having a laptop at all.
Not really. It’s okay for some just casual internet browsing and a few apps that are made for it, and I think you can use Office on it, but I’ve only used it to entertain myself at work. If you had access to a laptop or PC, you can plug a USB cable into any of the flagship Samsung phones and test it out.
Itd be nice if more people used it though, so itd get more support
If you’re familiar with Linux at all, there are some versions you can put on a rooted Android phone, and use it like a Linux PC. I never tried it, but I know it was a thing about 10 years ago, and I’m sure it’s still being worked on
I’m not personally surfing Lemmy on my work computer, but larger screen + physical keyboard and mouse.
I’ve worked a job that required using an app on my phone, and in order to install that app I had to give ROOT ACCESS and full remote control to the IT department and was subject to the same monitoring as when using a company desk or laptop. I just grabbed an older phone I had lying around and used that for work because I wasn’t about to give complete remote access to the phone I actually used every day.
Wait, your job required root access to your personal cell phone phone at all times? So if you were at home off the clock you were still restricted on your personal phone as to what websites you could view?
It’s also a legal issue. If something happens legally that’s work related and your phone becomes part of the discovery process someone would sift through your personal data
I mean that’s one thing to have access as part of an investigation, but to have remote access to it 24/7 seems excessive.
I use a Pixel 1 for the same purpose. It’s just a couple authentication apps in my case, but I still don’t want their shit on my personal phone.
Not sure why they’ve got to use proprietary shit instead of just using standards. I even offered my own Yubikey.
If you are android, there is an app called Shelter that lets you create customized contained work profile inside which apps can be killed completely until you enable work profile again. This would usually be enabled by certain official app by your employer’s IT policy, such as MS’s Company Policy, so you don’t normally have control over what app to put in the profile, but with Shelter you can pick and choose any app into the work profile freely. If you have other apps you don’t trust, you can also use it to contain them too
This does not sound legal. What country are we talking about?
US. California, specifically.
It’s ridiculous how we call ourselves the land of the free unless you want to bike to work, drive a small car, have privacy or do anything different/differently from everyone else is not ok here
Why did the company not supply the phone to be used for company purposes?
They were cheap bastards and were forever “in the process of getting” new company phones for brand new hires like I was at the time.
Fuck that. Our company gives us phones because they know they’re secure. And we don’t use them for anything but work related apps. I still make all my phone calls from my personal or office phone
I say, “We,” but that’s not entirely true. There are a couple of jackasses that do everything on them, but I assume the company can see it of they want to. So, fuck that
The other day I was on all and there was fucking porn without any NSFW filter on it on some cumsluts community, no co-workers were around thankfully but it was a good wake up call that all is not a place you wanna be unless you are at home.
Wait. Is everything from LemmyNSFW.com NOT auto-tagged, or is that community also on another instance?
I can’t remember, I didn’t take the time to screenshot it haha
How? The client should only be talking to your home instance. Your home instance does all aggregation for you. Only Lemmy instances talk to each other and clients talk to one instance. That’s how federation works.
Non-textual content (media, and icons I believe) is still served from the other instance to prevent all federated instances from exploding in size.
Additionally, some browsers will preload/prefetch links to “improve the browsing experience”
You’re totally right and that was a dumb oversight on my part. Please forgive me, OP.
Nah, you’re good. Lemmy is still new stuff. 👍
Yeah I was gonna say, don’t be browsing anything non work related directly on your work machine. I usually VPN to home then browse through RDP. If your work has screen monitoring software just browse from a personal device.
Even if you stick to subscribed, there’s nothing stopping people from spamming NSFW stuff in the comments and in posts except for the mods/admins though bad actors can always just register more accounts on any federated instance.
Hoping we see more improvements to mod tools/abilities.
When I read stuff like this, I feel there is a whole part of Lemmy that I am totally clueless about.
I have no idea even where the areas that OP is talking about even exist, and with the way the servers seem to go down all the time or I need to reload a browser, it makes it that much more difficult to wander around and get to know the place because you never know if a certain page is empty because its really empty or it just didn’t load correctly.
