Indeed, I sometimes don't post something because I think their's a chance for me to get negged for it, and when a senior member negs you...that hurts your antipoints alot, on the other side if they pos you you're happy
Printable View
Indeed, I sometimes don't post something because I think their's a chance for me to get negged for it, and when a senior member negs you...that hurts your antipoints alot, on the other side if they pos you you're happy
But he had no previous posts and I'm not saying that I don't trust him but as roswell said we are in a community where no one knows us so we can say and do as we please.
some of you may have noticed that this thread has jumped some what with regards to ap assignment......i am refering to AlcatraX's first post going from extremly neg to somewhat pos. I would just liike to say that I am responsible for this and the reason I am making this publicly known is to show not my support for this types of questions but more to put my support behind a more supportive attitude.
This was AlcatraX's first post and yes he should have thread the FAQ or Ennis's member FAQ or my own post about netiquette and how to get along on AO but sometimes new arrivals jump straight in without doing so - it is these people I feel should be guided to read the posts mentioned previously not neg'd for their over sight....if after being given fair warning they still continue to post such questions then by all means unload to your heart is content - I intend to do the same as i made clear (i hope) in my ap assignment but I feel everyone should be given one warning before punished....
Just my HO
v_Ln
hjack -- As a current or aspiring security administrator (or even security enthusiast), you seem to lack some prerequisite paranoia. :bigsmile: A question you may want to ask yourself is why should we believe anything this person has to say? AlcatraX, this has nothing to do with you and I hope you aren't taking any of this personally, but in fact I'm glad you brought this type of request to our attention. I'm not one to make mountains out of molehills, especially on a web-forum with a simple question like yours, but this is a great learning opportunity. As a security administrator, everyone here should be taking all information that comes your way as tainted unless you can confirm it for yourself. Otherwise, you would be a wonderful target to manipulate from a social engineer with any skill. Imagine a scenario like the following:Quote:
Originally posted here by hjack
assume = ass out of u and me
Maybe instead of negging him you should have checked out his previous post and then considered really based on this if this is clearly a unmoral activity. If not, then ask why first. All of you are so quick to neg. Its really sad because you scare honest individuals into not posting for fear of being negged to the point of banning.
ASK FIRST THE REASON!
hjack
edited for spelling
Voice on Phone: Hi, security? I'm a temp up on 4, and I'm locked out of my terminal. They said to call you.
Security Administrator (You): I'm sorry, that kind of information is not to be given out over the phone. You'll need to submit a ticket. The people who told you to call this number should know that you need to submit a request through the ticket system so the request can be properly confirmed with the department manager.
Voice on Phone: Oh, well the department manager left for the day, and he gave me a stack of reports to validate before 5. What should I do?
Security Administrator (You): I don't know what to tell you other than you should submit a security ticket and we'll get to it as soon as we can confirm the request with the department manager.
Voice on Phone: Can't you just scan my phone number to see that I'm calling from the correct department?
Security Administrator (You): I'm afraid that is not the proper protocol. I can't help you that way.
Voice on Phone: **Voice is getting angry** Look, I'm running out of time for this game. The department manager has left for the day, and it's gonna be your ass on the line if these reports aren't in by 5. I am not taking responsibility for this. Are you ready to lose your job?!
Security Administrator (You): Oh, alright. The caller id says you're calling from the 4th floor, and that department manager has logged out for the day. I guess it would be alright...
Wrong answer. Sometimes, we have to be stronger because something sounds "right". In this case, we may not be giving out government-sensitive information, but someone has asked us for the technology that is typically used to circumvent security. Security that we put into place and are charged with maintaining. If you were a police officer, would you give someone the instructions for acid-burning a serial number off a gun? Of course not. I'm just trying to keep the focus on security. That's why we're here.
Valhallen -- Even though I didn't neg AlcatraX at all, I probably was a little harsh in my first post. Thanks for the nudge.
my suggestion for Alcatrax
use some sort of removable media for your files and data. whenever using public labs, you are at risk of someone logging Your passwords and such, so installing a keylogger of any sort on a computer that you do not own (or that you are not the admin of) is in most cases considered spying/snooping and is Illegal, right up there with wiretapping.
using removable media, like a usb pen drive, zip disks or even /* gasp */ floppies will keep your data in your hands instead of on the computer.
just my two cents..
-sick