Work email and you.

[OutHouse]

Not really. It is pretty simple to insert ourselves in the certificate chain. The only way you would know is if you actually inspected the certificate and saw that it wasn't the google one but one generated from a CA in the company that your workstation trusts. It is a bit harder to insert in to the SSH tunnel but you can monitor the data fairly well there also.

Don't flame for this I'm only asking not pointing fingers. I am not too versed on certs but wouldn't messing with a certificate like that be borderline cyber crime? what business need would a company have to do something like this? i dunno i think that is taking it a bit too far. why not just block webmail using opendns or at the firewall.

 

[BrunoPuntzJones]

My issue is when the person is no longer employed and says "can I get my emails?" I'm like what emails could you need? Well dipshit signed up for EVERYTHING using her work email. Netflix, American Airlines, Ticketmaster, etc.

"But I need to be able to go back and get my tickets!" Why the hell would you think you would be able to take emails from our Exchange server with you? And complain about having to change her email address with everything she had used it for.

People are retarded.

 

[MrColin]

Your work email, and all of the messages are the property of the business, why would you even think of using it for personal use? No privacy, no ownership, lose it all when you leave the company. Businesses can and do monitor anything that goes across their networks. So do schools and universities. It's all legal and has held up to challenge in the courts.

Hence why I'm SSH'd into my home PC to troll AT

Highly recommended. I use RDP a little more often myself.

 

[SMOGZINN]

If I have two programmers (Bill and Frank) and Bill works diligently from 8-5 and never meets his agreed upon dead lines, and Frank plays minecraft 4 hours a day but is alway a day ahead of schedule. I'll give the raise to Frank.

Are you kidding?!? That means that you are under utilizing Frank. You could be getting twice the amount of work out of him! Optimal in this case is to fire Bill, tell Frank that is output does not increase he will be next, and make Frank do Bill's job as well. If there is even a 1% drop in production you make Frank take a %5 pay cut to keep his job, and maybe have his direct supervisor remind him just how bad it is going to look when he is fired for poor performance. If there is not a drop in production, then keep adding more responsibilities to Frank until there is.

 

[Imp]

Depends on what you mean "personal".

I use it to chat with coworkers... Occasionally, once every year to receive something important cause I'm too lazy to open up Opera to get Hotmail to work - swear to god, Hotmail always craps out no matter where I am and what browser I use.

Otherwise, I don't use work email for anything that I would need if I got fired tomorrow. I know it's monitored and company property. IT reminds us every few fucking days.

 

[MrColin]

Don't flame for this I'm only asking not pointing fingers. I am not too versed on certs but wouldn't messing with a certificate like that be borderline cyber crime? what business need would a company have to do something like this? i dunno i think that is taking it a bit too far. Why not just block webmail using opendns or at the firewall.

Its probably borderline but there aren't any laws that I know of holding the certificate chain as sacred. Just about any judge faced with such a case would probably rule in favor of the business rather than risk hurting his head trying to understand the issue. A fair hearing would probably consider arguments of "reasonable expectation of privacy" on one side. On the other side there would be arguments that the company owns everything the employee does on its hardware as well as the need to protect sensitive data or trade secrets. A defense against the "reasonable expectation of privacy" might be a formal disclaimer that stuff is being monitored.

 

[Ns1]

like 1% of my work email is for personal use. That's what gmail is for.

 

[nageov3t]

I don't intentionally use it for personal communications, but my mom and sister always use it to email me ><

I guess first.last@thecompanyIworkfor.com is easier to remember than adding my gmail address to their address book.

 

[Exterous]

Highly recommended. I use RDP a little more often myself.

Just keep in mind that network admins might get suspicious if they see that show up for your computer in the firewall logs all the time

 

[imagoon]

Don't flame for this I'm only asking not pointing fingers. I am not too versed on certs but wouldn't messing with a certificate like that be borderline cyber crime? what business need would a company have to do something like this? i dunno i think that is taking it a bit too far. why not just block webmail using opendns or at the firewall.

It isn't illegal as long as it is stated that "Your work computer is for work and may be monitored." The main reason for this type of monitoring is for the people that try bypass the filters via HTTPs sites like "all HTTPs plugins" and facebook and the like. The other issue is personal email is used to move data out of companies at time. I have seen some companies that allow personal email but scan for things like SSN / credit card numbers and drop the connection if it is detected. The sites that had this tended to pass through banks and the like (IE they didnt man in the middle chase.com)

 

[ch33zw1z]

Easy:

I often wonder how much more efficient/inefficient things run when companies devote resources to preventing people from doing things.

Also covered in the same Policy. I feel safest using SSH+RDP, they know nothing. We're not allowed to have Chrome installed on our workstations. There's a list of approved programs, IE+FF is ok.

edit: Posted from Chrome, via SSH+RDP

double edit: I use TeamViewer as a backup, just in case SSH goes to shit. Can't block port 80!!

 

[mvbighead]

Are you kidding?!? That means that you are under utilizing Frank. You could be getting twice the amount of work out of him! Optimal in this case is to fire Bill, tell Frank that is output does not increase he will be next, and make Frank do Bill's job as well. If there is even a 1% drop in production you make Frank take a %5 pay cut to keep his job, and maybe have his direct supervisor remind him just how bad it is going to look when he is fired for poor performance. If there is not a drop in production, then keep adding more responsibilities to Frank until there is.

Not really.

I can see his point. It can be used for any number of things. A mechanic for an example. If mechanic A can do a brake job in 30 minutes, and mechanic B can do it in 120 minutes, should the billable rate be less for A since it took less time to complete and therefor less labor hours? The answer, is no. You're paying a guy for experience. I shouldn't have to pay an incompetent person more labor hours because it takes them longer. If a guy can get something done in half the time as his "equal", I don't care what he does with his off time. He's a good employee that is efficient. I'd rather have one efficient employee than two that are incompetent.

 

[sourceninja]

Are you kidding?!? That means that you are under utilizing Frank. You could be getting twice the amount of work out of him! Optimal in this case is to fire Bill, tell Frank that is output does not increase he will be next, and make Frank do Bill's job as well. If there is even a 1% drop in production you make Frank take a %5 pay cut to keep his job, and maybe have his direct supervisor remind him just how bad it is going to look when he is fired for poor performance. If there is not a drop in production, then keep adding more responsibilities to Frank until there is.

Add then frank leaves and I'm out a ok programmer and a good one. I'll be forced to hunt for replacements. That makes my numbers look bad and then I end up on the chopping block.

 

[Ns1]

Also covered in the same Policy. I feel safest using SSH+RDP, they know nothing. We're not allowed to have Chrome installed on our workstations. There's a list of approved programs, IE+FF is ok.

edit: Posted from Chrome, via SSH+RDP

double edit: I use TeamViewer as a backup, just in case SSH goes to shit. Can't block port 80!!

pro status.

 

[ch33zw1z]

I try to explain to my coworkers, but it's like deer in headlights.

 

[Ns1]

we're also not allowed to have chrome, but I made nice with the PC tech and here I am w/ chrome.

 

[ch33zw1z]

we're also not allowed to have chrome, but I made nice with the PC tech and here I am w/ chrome.

chances are with my employer, the department digging through our info is probably offshored. random laptop scans, ftw??

 

[Ns1]

chances are with my employer, the department digging through our info is probably offshored. random laptop scans, ftw??

my employer is too cheap for that

 

[Pantlegz]

I don't. And really it's not a good idea to especially if they tell you not to. No reason to get in trouble if you can easily prevent it.

 

[lokiju]

No. Might get a couple a year from former co-workers who only know my work email but I just send them my personal email and continue the conversation that way.

Yep. Got a guy I used to work with that left last year and for some reason only ever will email me at my work account even though I've sent him my personal a few times.

Don't like doing any personal communications through work solutions when avoidable.