Our forums are currently in maintenance mode and the ability to post is disabled. We will be back up and running as soon as possible. Thanks for your patience!

General discussion


TechRepublic - Stick a dagger through my heart!

By maxwell edison ·
You are advertising That company is EVIL - EVIL, I say, to any network administrator or CIO trying to maintain some semblance of network security.

(I know. This probably belongs in Network Administration, but I kinda' like the miscellaneous people.)

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -

Max - Do tell

by j.lupo In reply to TechRepublic - Stick a da ...

Why are they EVIL in your opinion. I would like to understand this. I saw a commercial for them and was thinking they had to be breaking every Info Sec rule in and out of the book.

Collapse -

You answered your own question. . . . .

by maxwell edison In reply to Max - Do tell

...when you said, "they had to be breaking every Info Sec rule in and out of the book."

Collapse -

I was just hoping for a little more detail as

by j.lupo In reply to You answered your own que ...

that was my gut reaction to the commercial I saw. I don't really have a lot of information about them. It kind of reminded me of PC Anywhere software.

Collapse -

Okay, more detail

by maxwell edison In reply to I was just hoping for a l ...

To prevent users from installing GoToMyPC on their computers, the user has to be a restricted user, which, in many cases, isn't the best scenario. In many companies (including mine), there's good reason to give most users administrative privileges, in which case, they can install this software, via the Internet, onto their computers so they can access it from the outside.

If any of my users are approved for outside access, and many are, I want them to go through the established VPN, not some third party software that circumvents the process of approving and defining those users, and configuring the VPN accordingly. Moreover, these users can then access their HOME computers from work, doing day-trading in the stock market, surfing for porn, or whatever else they might do from home, all bypassing any company safeguards or policies.

There is a way to block GoToMyPC in a router, but those EVIL people at GoToMyPC can, and do, change IP addresses at will, thereby circumventing any router block a company might define. Every time I see a way to block them, I see something else they do to get around it.

The bottom line is that the company, not the users -- and especially not any third-party company like GoToMyPC -- should decide who has remote access to and from the company computers; and GoToMyPC is designed to do just that.

It's kinda' like the radar detector of remote access software, and I'm the highway patrolman trying to keep them from speeding on my little corner of the information superhighway.

Collapse -

Can this be controlled

by mjwx In reply to Okay, more detail

Either at the firewall or via group policy?

As for the highway patrolman analogy, I think of myself (as an admin) as the guard at the gate, keeping everyone inside safe from the barbarians.

Collapse -

My experience

by Tig2 In reply to Can this be controlled

mjwx, to answer your question, not that I have found. Group policies are fab until you trip over the user with full admin rights that HAS to be able to downoad and use various tools. Add to that that I have end users that "think" they should have been issued a laptop but were instead given a desktop. I counsel such folk to build a business case- generally doesn't take much- and let me handle it. Takes a couple-three weeks. End user decided to do an end run and the next thing I know I have an issue that I do not want during audit season.

Bad ju-ju. Very bad.

Your analogy and Max's- in my opinion- are similar. I don't think I have "stupid users". I have very dedicated people that want to get their work done and are looking for facilitation tools. My teams are guilty of wanting to be able to do their jobs all the time. I have great people.

How do you slow someone down without de-motivating them?

Collapse -


by mjwx In reply to My experience

that?s how you slow someone down without de-motivation. Injury and insult maybe but the spirit remains intact.

Group policy can be used extremely effectively meaning that only the Administrator needs full administrator privates. But this is dependent on having the time and skill to set it up properly (tailoring exact permissions and policies to groups and individual users).

Whist there is no shortage of skills from people here on TR, who has the time to properly set up GP? So it?s easier to give people local admin permissions and get on with more important work.

As for end users, after one week of counselling and they still want a laptop I inform them of my company's policy that they are free to buy their own and rent it back to the company. I also show them a few 5 or 6K ($AU) models (laptops) approved by the company if I need further dissuade them.

Most people around here who have been issued with a desktop are happy with it as they generally need the extra grunt. Try pointing out the benefits of a desktop, such as it makes it difficult to take work home. If that doesn?t work you could always threaten, coerce or beat them to death with the KB.

Collapse -

mjwx@... makes a good point. . . . . . .

by maxwell edison In reply to My experience

.....with group policies. However, I believe some offices (including mine) are unique in that the users are professionals in their own right (in their chosen field), and must have a lot of flexibility to expand and explore a lot of things.

Our office is very open concerning technology, and it hinders business if we tie people's hands. Group policies could certainly be defined, but we don't want to be constantly adding and changing those policies. For the most part, it works very well, as everyone is responsible enough to manage it. There's that one person out of ten, however, that might take advantage and stretch the limits. We don't want to limit the abilities of the nine, so to speak, in order to reign in the one. When you support a group of professionals, such as lawyers, insurance agents, architects, engineers, accountants, realtors, etc., they don't want to be limited in what they can and cannot do, and in most cases, rightfully so.

Collapse -

Its the 20 something users we have problems with

by CG IT In reply to My experience

Most of the, ha ha, "older" guys and gals at our company are very responsible about security. It's the new 20 something hires we have problems with and GotomyPC.

As you say Tigger Bad ju-ju Very Bad.

We had 3 new hires right from college decide they wanted to have remote access and didn't like the hoops they had to jump through and install Gotomy PC. We only found out because one of the idiots happened to not be in one day and couldn't get to his desktop [is was turned off] and called us wondering why. We wondered how he was remoting in when he's not authorized to.

Its BAD software for a business to have their users use it. We ended up making a corporate policy [fireable offense] baring the use of GotomyPC on any company computer to get the new hires to get the hint. Do not use this.

Collapse -

Thanks Max

by j.lupo In reply to Okay, more detail

So this isn't exactly like PC Anywhere, since companies control the installation and use of the software. In the case of GoToMyPC they are deliberatly designing their software to bypass corporate safeguards.

I wonder about the legal ramifications of that. For example, Napster got in trouble with the music downloads due to copyright or whatever the full issue was about the music. People got around having to buy CDs and pay for the music which in turn I think affected profits on the music.

Question: Would this with GoToMyPC be similar to what Napster was doing (in the beginning that is)?

Related Discussions

Related Forums