Comments on: Security product testing https://grey-panther.net/2007/08/security-product-testing.html Just another WordPress site Sun, 02 Dec 2007 14:11:51 +0000 hourly 1 https://wordpress.org/?v=6.9.4 By: padraig https://grey-panther.net/2007/08/security-product-testing.html#comment-768 Sun, 02 Dec 2007 14:11:51 +0000 https://grey-panther.net/?p=799#comment-768 Systems Administrators have very grounded opinions about what people should or should not do with their machines. However, if they wish to turn off local administrator access (for example), they have to explain to people, and for some subset of their userbase, “I’m doing this for your own good” is going to translate to “You’re not qualified to do this, you idiot, so I’m turning it off.”

Depending, of course, on how tactless the systems administrator is, and how high maintenance the user population is.

On the other hand, if they buy “security products” and install them, and the “security product” disables something the users wants, the systems administrator can nod his head and say, “Yes, I understand why you find this annoying, but our security software doesn’t allow it” -> the systems administrator gets to play “good cop” and put the security software in the role of “bad cop”.

It’s a trust issue: it is very common for people to want to argue with their IT guy (and why not, they run their own computer at home), but they can’t argue with the faceless security software. Plus, the security software was written by experts, right?

Remember the old saw, “An expert is someone who doesn’t work here” 🙂

]]>