Gotta Love The Job

[Ignacio]

You all are going to love this one!

Warchild and I work for a contractor to a government agency that has a lot of employees. Lots of techies and scientist types trying to make big tanks of stuff with large atomic numbers and half-lives into double-digit atoms that don't spew out quite so many gamma rays.

You gotta love when people with questionable IT experience get to be in charge of Internet Security. This one dude who shall remain nameless read a slightly questionable article on a real issue but non-immenent issue, but then decided to go completely nutty and block access to certain websites for 8,000 employees. :huh:

These arcane websites you ask? You know.....arcane and obscure ones.......

https://www.live.com/

www.live.com
https://www.live.com/(OK, I don't I use it much....)
 

https://www.yahoo.comwww.yahoo.com
https://www.yahoo.com(Hey, I've heard of that one!)
 

https://www.google.com/www.google.com
https://www.google.com/(WTF?
:blink: )

...so I'm pretty sure none of the 8,000 people people I work with will notice these obscure websites don't work and call the help desk or anything.

So, I wanted everybody on the forum to know that I'm all safe at work while you all are apparently surfing horribly risky places and will die from Internet cancer before the day's out. ...sucks to be you. :jealoussmiley:

I don't know whether to laugh, cry, take a nap, or go unplug this guy's network cable. :asshat: :trinibob:

 

[twowheelnut]

Um, wut? Google's broken?

 

[GunMD]

I uhhhh....don't know what to say. But just so you know, I'm over here laughing my ass off.

Um, wut? Google's broken?

No, Google isn't broken, but the internet is offline cuz of some contractor clown over at Iggy's place.

 

[Ignacio]

No, Google isn't broken, but the internet is offline cuz of some contractor clown over at Iggy's place.

Says the man that's also working for a contractor for a different government agency that's doing who knows what in the desert.

 

[brazos parker]

And, what? You think that kind of behavior is unusual? In my experience, it is not. It is laughable but not uncommon.

I'm retired, so, like GunMD, I'm sitting here LMAO as well.

 

[twowheelnut]

No, Google isn't broken, but the internet is offline cuz of some contractor clown over at Iggy's place.

Note to self: Make sure to use smilies. Certain peeps have no sense of humor in their absence...

Ex:

:lol:

 

[GunMD]

No, Google isn't broken, but the internet is offline cuz of some contractor clown over at Iggy's place.

Says the man that's also working for a contractor for a different government agency that's doing who knows what in the desert.

Oh contraire my contract friend. I'm a genuine Guvment employee.

(Oh, and believe it or not...I'm the Information Assurance Manager* for my organization). Scary, huh?

*Don't worry, I like Google. We'll not be blocking that one this week.

 

[Ignacio]

(Oh, and believe it or not...I'm the Information Assurance Manager* for my organization). Scary, huh?

You know....I think the nimrod in question has that exact same title as you. Besides whether you could take the action he did....if you shut down internet access would you laugh or cry in my position?

I'm in the middle of cubicle ground-zero where all this stuff is taking place...listening to conversations as I type this....and just shaking my head. It's so sad it's actually kinda funny.

 

[sonicspeed]

thank goodness i control the internet access for my business

at least when i see porn show up on the logs i know exactly who to blame

my brother!!!! :lol:

 

[GunMD]

Hey Iggy, here's the part of the article that your IAM apparently didn't comprehend.

All the malicious code pitched at users is well-known to security vendors, and can only exploit PCs that aren't up-to-date on their patches.

If your IAM is doing his job then he won't even have any systems that are vulnerable to this crap. Problem solved.

 

[Ignacio]

If your IAM is doing his job then he won't even have any systems that are vulnerable to this crap. Problem solved.

I think we're only to five nines on patching. I think he wants nine 9's because it sounds so cool....

One can only hope that Nimrod's boss will read that far. Nimrod has a habit of reading the title and one or two sentences before losing foc.....hey somebody's making cookies in the kitchen.....gotta go!

 

[airboss]

Snicker, good thing our IT's in Texas. Keeps them from physical harm, uh, ur, contact with the worker bees.

 

[Kevin Daly]

Yeah, welcome to my world. the IT nazi's here at WVU decided, based on a 2 year old IT security memo to block RDP, which many of us use to work at home with. The idiots blocked it 2 years ago or so they thought. Never mind that no one exploited the vurnerability in the past 2 years (because MS distributed a patch 2 years ago), when they discovered they hadent blocked it they fixed it. Turns out a quick change of RDP port and my problems were solved. And there sittin there thinking they have it all rapped up neverending effort to overcome the stupidity of others :dribble:

 

[kaitsdad]

I don't know whether to laugh, cry, take a nap, or go unplug this guy's network cable. :asshat: :trinibob:

Would he notice? :blink:

 

[NoCage]

The threat has to do with some talented butt-rashes using search engines, including Google, to point users to sites hosting malware. The FBI - I.T. professionals organization, Infraguard, sent a list of some of the sites/i.p. addresses that users were being sent to. Iggy, I can't believe your guy blocked the source of the search engine... running the wrong dog. We blocked the malware sites in DNS, which propagates throughout the AD forest. That's faster and doesn't throw out the baby with the bathwater. But current virus defs. are the best defense. PM if I can help out some way.

 

[wfooshee]

Yeah, patches and up-to-date, centralized, managed and hopefully gateway antivirus/antispyware.

Our AD distributes our antivirus product to new desktops automatically, pushes definitions out, and our router has an optional AV module which we've not yet implemented (testing went sour last year, fixes promised real soon.) Patches are harder to manage, but take care of most of the exploits used in these attacks.

It's great to see somebody else has to deal with people who react to panic, rather than work a planned strategy. I read this, so we have to do something!!! It never occurs to them that you already are.

 

[Low Level FJR Pilot]

I work for the Government and know full well what you are talking about, only it went full scale in the Navy and its a huge four letter word, please don't sanction me for using this kind of language on the site: NMCI :assassin: We have taken that Acronym and come up with a few choice names for it such as No More Communications Interface, No Mail Comes In, Nimrods Make Communications Infrastructure and the list could go on and on. Thank God some of us can still work from a legacy LAN setup that was not assimilated when the EDS folks came to our command. I can get my real job done on it. B)

 

[Hit the Road Jack]

My job doesn't allow any connectivity to the outside world! No internet, email, cell phones, PDAs, cameras, windows, etc.

 

[Auburn]

I vote pull the cable..

:lol: