Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Are users right in rejecting security advice?

From: John Ladwig <John.Ladwig () CSU MNSCU EDU>
Date: Thu, 18 Mar 2010 12:58:26 -0500
You missed one crucial piece of context when quoting:

"Imagine the relative ease in defending your viewing of an employee’s
Facebook page if you have this consent in hand:"

The consent blurb you quote is hypothetical, and I don't think it's a
good idea, nor likely to get past HR or Counsel review (in consultation
with InfoSec), I'd hope.

   -jm 


Kevin Wilcox <wilcoxkm () APPSTATE EDU> 2010-03-18 12:45 >>>

On 18 March 2010 12:56, Katie Weaver <katie.weaver () awareity com>
wrote:


I thought I would pass along this article that offers some good

guidance on policies and enforcement and may help address some of the
issues and concerns discussed in this string.




http://www.workforce.com/section/03/feature/27/02/75/index.html 


"I understand that monitoring can extend beyond Employer X-provided
equipment and my at-work time to off-site social electronic sites such
as MySpace, and to any Twitter or other social media account I
maintain or visit. I agree, in advance, to provide Employer X with any
needed password or other access to conduct employment-related
monitoring."

At first I thought the article was serious - then I read the above.
Excellent piece of stinky bait for fishing those that take that kind
of rubbish seriously.

kmw

--
Kevin Wilcox
Network Infrastructure and Control Systems
Appalachian State University
Email: wilcoxkm () appstate edu 
Office: 828.262.6259
Previous By Date Next
Previous By Thread Next

Current thread: