<deleted>
- Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
- Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!
Does anyone else have this irritating problem?
Collapse
X
-
-
Is it yahoo by any chance??? Because I get the same...... logging out of yahoo mail takes you to same page as logging out of yahoo chat / instant messaging etc..... so prob gonna be blocked by ya proxy server. -
-
Originally posted by kirk View PostYou use your clients Internet connection?!??! Ewwwwwwwwwsorry Diver I'm off the cigs againComment
-
Originally posted by fridge View PostYeh mate use your clients connection thats what its there forComment
-
Originally posted by kirk View PostNo way; monitored, proxied Internet connections belonging to my client aren't for me!
When I had been there a few months, I logged a support call to get one of these fixed (an in-house app got installed badly which broke the logon process). Desktop support bod remotely connects to my PC (with no acknowledgement or confirmation needed from me), double-clicks on the icon in the systray for the single sign-on s/w, enters the admin password then goes to my logon entries.
Displayed is a nice table:
TimeSheet_app BISSUE01loginid XXXXX
ProjMan_app BISSUE01 XXXXX
and so on.
Support bod clicks on [plain text button] and the passwords change to plain text. So what? The list also included:
- my GoogleMail account name and password;
- my Yahoo! account name and password;
- my personal bank account login including the answers to all 5 security questions, account number and sort code;
- my business current account number and password;
- my business deposit account number and password;
- my web site control panel login details;
- about a dozen others.
And apparently all this stuff is mirrored onto a central server that the support team has access to.
I raised this with their IT security manager, but it was made very clear contractors shouldn't rock the boat.
There are 6000 people using that organisation's PCs.
Moral: think VERY hard about what you type in to a computer that you don't have absolute control over.Drivelling in TPD is not a mental health issue. We're just community blogging, that's all.
Xenophon said: "CUK Geek of the Week". A gingerjedi certified "Elitist Tw@t". Posting rated @ 5 lard pointsComment
-
Comment
-
-
Originally posted by BrowneIssue View PostIt can be worse than that. One public sector client site I was on has 'single sign-on' s/w installed. It's great because it detects virtually all logon screens and remembers what you enter. Handy because you're allowed to use their PCs at lunchtime & after work for personal use - you can whizz straight into a forum or auction and out again quickly.
When I had been there a few months, I logged a support call to get one of these fixed (an in-house app got installed badly which broke the logon process). Desktop support bod remotely connects to my PC (with no acknowledgement or confirmation needed from me), double-clicks on the icon in the systray for the single sign-on s/w, enters the admin password then goes to my logon entries.
Displayed is a nice table:
TimeSheet_app BISSUE01loginid XXXXX
ProjMan_app BISSUE01 XXXXX
and so on.
Support bod clicks on [plain text button] and the passwords change to plain text. So what? The list also included:
- my GoogleMail account name and password;
- my Yahoo! account name and password;
- my personal bank account login including the answers to all 5 security questions, account number and sort code;
- my business current account number and password;
- my business deposit account number and password;
- my web site control panel login details;
- about a dozen others.
And apparently all this stuff is mirrored onto a central server that the support team has access to.
I raised this with their IT security manager, but it was made very clear contractors shouldn't rock the boat.
There are 6000 people using that organisation's PCs.
Moral: think VERY hard about what you type in to a computer that you don't have absolute control over.
All your passwords are belong to us
You should see how users sweat when you casually mention to them that you can read their email from your computer.
KComment
- Home
- News & Features
- First Timers
- IR35 / S660 / BN66
- Employee Benefit Trusts
- Agency Workers Regulations
- MSC Legislation
- Limited Companies
- Dividends
- Umbrella Company
- VAT / Flat Rate VAT
- Job News & Guides
- Money News & Guides
- Guide to Contracts
- Successful Contracting
- Contracting Overseas
- Contractor Calculators
- MVL
- Contractor Expenses
Advertisers
Contractor Services
CUK News
- HMRC warns IT consultants and others of 12 ‘payroll entities’ Today 09:15
- How you think you look on LinkedIn vs what recruiters see Yesterday 09:00
- Reports of umbrella companies’ death are greatly exaggerated Nov 28 10:11
- A new hiring fraud hinges on a limited company, a passport and ‘Ade’ Nov 27 09:21
- Is an unpaid umbrella company required to pay contractors? Nov 26 09:28
- The truth of umbrella company regulation is being misconstrued Nov 25 09:23
- Labour’s plan to regulate umbrella companies: a closer look Nov 21 09:24
- When HMRC misses an FTT deadline but still wins another CJRS case Nov 20 09:20
- How 15% employer NICs will sting the umbrella company market Nov 19 09:16
- Contracting Awards 2024 hails 19 firms as best of the best Nov 18 09:13
Comment