Because by law in certain countries, homosexuality is persona non grata, and a filter needs to be there to legally operate in such countries.
- 0 Posts
- 10 Comments
Joined 2 years ago
Cake day: June 23rd, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
This company wasn’t exactly targeted. It could have happened to literally anyone.
Yep! Such container breakouts exist even today in Citrix !
Shit like this was what got me into cybersecurity
I learned to program when I was 10 on a Commodore 64. And we would wear an onion on our belt which was the style at the time… Sorry, where was I?
Totally get that, but we live in a much more dangerous and predatory computer landscape these days. It would be foolish not to take some precautions.
Standard Ubuntu should have you covered.
One word of warning though, don’t be too egregious with the parental controls. If your kids are motivated enough, they will find a way around it.
Education really is your best weapon here. Tell them about the dangers of the modern web and computing.
1·1 year agoThe security implication from a USB boot are probably more severe but also more the fault of the people configuring your work machine. It is expected that people will plug things like pen drives in, to a degree. It is your job to block it with configurations.
The real problem is that once you start adding or removing internal hardware, that configuration no longer stays a trusted one because they’ve meddled with the components.
I mean it likely isn’t an issue for org security (assuming they’re using bitlocker appropriately etc.)
Data loss/leak prevention would vehemently disagree. It’s a potential exfiltration point, especially if the org is blocking USB writes.
Networking might have a thing or two to say about it as well, as it is essentially an untrusted setup on company networks
Danger Will Robinson! Do NOT fuck with company hardware!
You are going to potentially set off a shit ton of alarm bells, and risk your job, by even attempting this.
First of all, almost all such devices come with a BIOS lock. You’d need to get the password before you could even begin this (again, do not do it!)
Secondly, they’ll be able to tell something is up from the foreign UEFI entries.
Thirdly, if that doesn’t expose you, Intel IME will. Doesn’t matter what operating system you’re running.
And you’re going to create some royal fucking headaches for a lot of people in your company.
Let’s start with security. Remember when I said you’ll set off alarm bells? Well, I mean some mother fucking alarm bells. Security will have a god damn aneurysm over this, and they will believe you may be doing this to bypass security, possibly for nefarious reasons. A foreign hard drive with its own OS looks shady as shit.
Then there’s the regular tech people. You’re going to cause various headaches for them too. Not least because under many service agreements, the company itself may not be authorised to open up the workstations themselves. Many workplaces rent their workstations nowadays, and it is not uncommon to see this language in their SLAs.
Then there’s the fact that the OS image on the original drive potentially cannot be trusted any more, so they have to wipe the fucker clean and do a fresh image install.
TL;DR, You are giving your company several solid reasons to fire you for cause by doing this.
I dunno, why don’t you ask, eg: Russia?