<a href="http://g.adspeed.net/ad.php?do=clk&zid=15220&wd=468&ht=60&pair=as" target="_blank"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=15220&wd=468&ht=60&pair=as" alt="i" width="468" height="60"/></a>
Log in
::
Register
::
Not logged in
Home
Tags
Articles
Editorials
Stairways
Forums
Scripts
Videos
Blogs
QotD
Books
Ask SSC
SQL Jobs
Training
Authors
About us
Contact us
Newsletters
Write for us
<a href="http://g.adspeed.net/ad.php?do=clk&zid=15491&wd=120&ht=300&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=15491&wd=120&ht=300&pair=as" alt="i" width="120" height="300"/></a>
Recent Posts
Recent Posts
Popular Topics
Popular Topics
Home
Search
Members
Calendar
Who's On
Home
»
SQLServerCentral.com
»
Editorials
»
Hacked
20 posts, Page 1 of 2
1
2
»»
Hacked
Rate Topic
Display Mode
Topic Options
Author
Message
Steve Jones - SSC Editor
Steve Jones - SSC Editor
Posted Tuesday, January 01, 2013 9:18 PM
SSC-Dedicated
Group: Administrators
Last Login: Today @ 4:46 PM
Points: 31,433,
Visits: 13,745
Comments posted to this topic are about the item
Hacked
Follow me on Twitter:
@way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
Post #1401645
Life is too short
Life is too short
Posted Wednesday, January 02, 2013 2:03 AM
Grasshopper
Group: General Forum Members
Last Login: Monday, February 18, 2013 2:14 AM
Points: 16,
Visits: 81
You were lucky, I have worked in some companies (including the current one) that believes it is too much effort and too expensive to set up power accounts for admins. Then again they seem to prefer the developers, 3rd parties & applications to have SA rights.
A few companies have a lock down policy and then its just habit to use the appropriate login. Also, stops the face-palm-Doh!! moments
Post #1401695
David.Poole
David.Poole
Posted Wednesday, January 02, 2013 2:13 AM
SSCrazy
Group: General Forum Members
Last Login: 2 days ago @ 9:35 AM
Points: 2,749,
Visits: 1,407
In the past I've known a brief hacking attack to result in a DBA to be dedicated full-time for two weeks solid to clean up the mess and that was after the hole was plugged.
LinkedIn Profile
Post #1401701
anthony.green
anthony.green
Posted Wednesday, January 02, 2013 3:40 AM
SSCertifiable
Group: General Forum Members
Last Login: Friday, April 12, 2013 3:51 AM
Points: 5,075,
Visits: 4,831
Sounds all to familar, especially with people not locking their workstations. At a previous employer we had a security audit for anyone working on sensitive high level information and if you worked on the Ministry of Defence contracts, to which we where given a sonar to put on top of our monitors, so that if you moved so many inches away from your workstation it automatically locked the machine for you.
http://www.rfideas.com/products/presence_detector/pcprox_sonar/
Want an answer fast? Try here
How to post data/code for the best help - Jeff Moden
Need a string splitter, try this - Jeff Moden
How to post performance problems - Gail Shaw
CrossTabs-Part1
&
Part2 - Jeff Moden
SQL Server Backup, Integrity Check, and Index and Statistics Maintenance - Ola Hallengren
Managing Transaction Logs - Gail Shaw
Troubleshooting SQL Server: A Guide for the Accidental DBA - Jonathan Kehayias and Ted Krueger
Post #1401739
WolforthJ
WolforthJ
Posted Wednesday, January 02, 2013 7:31 AM
Valued Member
Group: General Forum Members
Last Login: Yesterday @ 7:14 AM
Points: 60,
Visits: 242
Kinda surprised at that story. At a former site, we had one guy who went to the security workshop, came back and told everyone to lock their stations, and most people ignored him. If he didn't like you, he would watch for when you left your station unlocked and send an email from you, usually something about goats. The boss liked him, so he got away with it. Personally, I would have found some more work for him.
Post #1401835
P Jones
P Jones
Posted Wednesday, January 02, 2013 7:44 AM
Mr or Mrs. 500
Group: General Forum Members
Last Login: Monday, May 20, 2013 7:35 AM
Points: 515,
Visits: 1,016
We have a staff small ads system and so the favourite trick on the shop floor is to place a nonsense advert using the unlocked workstation such as Wanted - Braincell.
This then results in the user getting emails and a call from the system administrators who monitor adverts!
Most users other than admins cannot write to the C drive and USB and other ports and cd/dvd drives are locked down on our systems so can't be used and can only be opened up to specially encrypted memory sticks. This stops anything being brought in from outside or being installed by non-admin staff. It's not rocket science and I'm surprised it's not industry standard practice.
Post #1401848
jon.spain
jon.spain
Posted Wednesday, January 02, 2013 7:56 AM
SSC Journeyman
Group: General Forum Members
Last Login: Today @ 8:36 AM
Points: 85,
Visits: 96
At a previous employer, we played "donuts". If you walked away from your station and didn't lock it, then whoever noticed this would pop up a new email and send it to the "Admin" group address with the word "donuts" as the subject (which takes all of about 10 seconds). Who ever was dumb enough to leave their station unlocked then had to buy donuts for the entire admin team that Friday. It was a fairly large admin team, so you had to be ready to shell out 50-60 bucks.
A little goofy, but it drove the point home...lock your station every time, or it will cost you.
Post #1401855
Steve Jones - SSC Editor
Steve Jones - SSC Editor
Posted Wednesday, January 02, 2013 8:56 AM
SSC-Dedicated
Group: Administrators
Last Login: Today @ 4:46 PM
Points: 31,433,
Visits: 13,745
jon.spain (1/2/2013)
At a previous employer, we played "donuts". If you walked away from your station and didn't lock it, then whoever noticed this would pop up a new email and send it to the "Admin" group address with the word "donuts" as the subject (which takes all of about 10 seconds). Who ever was dumb enough to leave their station unlocked then had to buy donuts for the entire admin team that Friday. It was a fairly large admin team, so you had to be ready to shell out 50-60 bucks.
A little goofy, but it drove the point home...lock your station every time, or it will cost you.
That's a good idea. I like that as a way of teaching people to lock their stations.
Follow me on Twitter:
@way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
Post #1401884
Steve Jones - SSC Editor
Steve Jones - SSC Editor
Posted Wednesday, January 02, 2013 9:00 AM
SSC-Dedicated
Group: Administrators
Last Login: Today @ 4:46 PM
Points: 31,433,
Visits: 13,745
WolforthJ (1/2/2013)
Kinda surprised at that story. At a former site, we had one guy who went to the security workshop, came back and told everyone to lock their stations, and most people ignored him. If he didn't like you, he would watch for when you left your station unlocked and send an email from you, usually something about goats. The boss liked him, so he got away with it. Personally, I would have found some more work for him.
I can appreciate the annoyance, but it drives home an important point. The only way we audit actions is with your authentication on your workstation/laptop/device. At least right now. In a group environment, leaving your workstation unlocked is a security risk. I can't tell you how many times I've found out about people you thought you could trust, or thought you knew, were performing some inappropriate, unauthorized, or illegal action for their own gain.
Follow me on Twitter:
@way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
Post #1401889
ACinKC
ACinKC
Posted Wednesday, January 02, 2013 11:38 AM
SSC-Enthusiastic
Group: General Forum Members
Last Login: Thursday, March 21, 2013 3:53 PM
Points: 114,
Visits: 916
When I worked at The Major US Motorcycle Manufacturer the salaried employees were warned during our orientation to never leave our workstations unlocked when we stepped away. Seems that in addition to the need for security, the "non salaried employees" were known to wander the non-production areas during their breaks looking for unattended PCs. The story told was that they would send e-mails, surf the 'net, and other things they shouldn't be doing. One fellow was caught after sending a rather unflattering e-mail to the plant manager when a security camera just happened to be pointing in the right direction. I learned rather quickly that Windows-L was so easy to do that it became a habit that I still do to this day.
Buying doughnuts for the team is good lesson and cheaper than losing your job over a security breach.
Post #1402002
« Prev Topic
|
Next Topic »
20 posts, Page 1 of 2
1
2
»»
Permissions
You
cannot
post new topics.
You
cannot
post topic replies.
You
cannot
post new polls.
You
cannot
post replies to polls.
You
cannot
edit your own topics.
You
cannot
delete your own topics.
You
cannot
edit other topics.
You
cannot
delete other topics.
You
cannot
edit your own posts.
You
cannot
edit other posts.
You
cannot
delete your own posts.
You
cannot
delete other posts.
You
cannot
post events.
You
cannot
edit your own events.
You
cannot
edit other events.
You
cannot
delete your own events.
You
cannot
delete other events.
You
cannot
send private messages.
You
cannot
send emails.
You
may
read topics.
You
cannot
rate topics.
You
cannot
vote within polls.
You
cannot
upload attachments.
You
may
download attachments.
You
cannot
post HTML code.
You
cannot
edit HTML code.
You
cannot
post IFCode.
You
cannot
post JavaScript.
You
cannot
post EmotIcons.
You
cannot
post or upload images.
Copyright © 2002-2013 Simple Talk Publishing. All Rights Reserved.
Privacy Policy.
Terms of Use.
Report Abuse.
