The one and only time I was put under I said “you know what you’re doing, eh?” And he just put me out. I didn’t mean to say that, I was just nervous. I did see a nurse laugh though so that’s nice.
I admit. I just pictured them lying on the operating table about to be knocked out for surgery with them saying "Good luck on the surgery" to the surgeons.
I had a very stodgy surgeon and I actually got a laugh out of him. He checked in with me pre surgery and as he was leaving said he would see me in the OR and I was like I hope I don’t see you (meaning I hoped the anesthesia worked). No one else got what I meant except for him and he had a genuine chuckle.
Our IT mandated 15 character long passwords. Many people in manufacturing (the guys who make the stuff we produce or setup and fix the machines) have the passwords in the format: “Somename123456…” You get the picture. When the passwords are forced to change? Yeah, just add “a,b,c,d…” at the end. Many have it written down on some post-it note on the notebook or desk. Security my ass.
I wouldn’t be surprised if I found that office guys have it too.
At a place I used to work one of my coworkers just had their password as a barcode taped to their desk. Now to be fair we worked in the extra high security room so even getting access to that desk would be a little tricky and we had about 20 unlabeled barcoded taped to each of our desks for various inventory locations and functions. So if someone wanted to get into their account they would still have to guess which barcode it was and get into a room only like 10 people had access to. It still felt pretty damn sketchy though.
If you feel like poking a bear. NIST 800-63B is the US Federal guidance on passwords. In the past this guidance said to have long passwords and rotate them. Now they say 8 characters and never change (along with using MFA).
Don’t even start me on MFA. It routinely happens to me and all coworkers that it’s not enough to type in the code from the authenticator once, not twice, not even three times. You log in to windows, code prompt. You open Outlook, code prompt. You open SharePoint, another one. OneDrive? Another.
As someone who manages multiple identity systems - tell your IT to get their act together. Most of my environments we force reaith once a week (and that just a quick enter your password/TOTP code). Otherwise if you can log into your computer we trust you are who you say you are (note: we have some downright scary and invasive stuff on the network so we know if you start accessing stuff you should not). The sensitive/scary stuff is a lot faster (activity timers), but the teams involved know why it’s set this way (and where involved in setting the maximum durations).
asklemmy
Oldest
This magazine is from a federated server and may be incomplete. Browse more on the original instance.