What they don’t understand is their own machine can get compromised, and in turn compromise their accesses and other infrastructure in a pivot attack.
Developers tend to have quite a lot of access, and some can even deploy to production. At my company, the dev workstations are even more locked down than the regular users’ computers for that reason, they can’t even leave the province.
I hate blanket generalization. You know when you get to that point that your company is over managed and understaffed, not creating a good work environment.
Because too many developers don’t understand cybersecurity.
As is obvious from some of these comments here.
Whats next, you want domain admin access to every computer/server you touch as well?
Nah, sudo is fine. I can create users without touching the domain stuff. 🙃
What they don’t understand is their own machine can get compromised, and in turn compromise their accesses and other infrastructure in a pivot attack.
Developers tend to have quite a lot of access, and some can even deploy to production. At my company, the dev workstations are even more locked down than the regular users’ computers for that reason, they can’t even leave the province.
I hate blanket generalization. You know when you get to that point that your company is over managed and understaffed, not creating a good work environment.