this post was submitted on 02 Aug 2023
911 points (94.5% liked)

You Should Know

32998 readers
205 users here now

YSK - for all the things that can make your life easier!

The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:

Rules (interactive)

Rule 1- All posts must begin with YSK.

All posts must begin with YSK. If you're a Mastodon user, then include YSK after @youshouldknow. This is a community to share tips and tricks that will help you improve your life.

Rule 2- Your post body text must include the reason "Why" YSK:

**In your post's text body, you must include the reason "Why" YSK: It’s helpful for readability, and informs readers about the importance of the content. **

Rule 3- Do not seek mental, medical and professional help here.

Do not seek mental, medical and professional help here. Breaking this rule will not get you or your post removed, but it will put you at risk, and possibly in danger.

Rule 4- No self promotion or upvote-farming of any kind.

That's it.

Rule 5- No baiting or sealioning or promoting an agenda.

Posts and comments which, instead of being of an innocuous nature, are specifically intended (based on reports and in the opinion of our crack moderation team) to bait users into ideological wars on charged political topics will be removed and the authors warned - or banned - depending on severity.

Rule 6- Regarding non-YSK posts.

Provided it is about the community itself, you may post non-YSK posts using the [META] tag on your post title.

Rule 7- You can't harass or disturb other members.

If you harass or discriminate against any individual member, you will be removed.

If you are a member, sympathizer or a resemblant of a movement that is known to largely hate, mock, discriminate against, and/or want to take lives of a group of people and you were provably vocal about your hate, then you will be banned on sight.

For further explanation, clarification and feedback about this rule, you may follow this link.

Rule 8- All comments should try to stay relevant to their parent content.

Rule 9- Reposts from other platforms are not allowed.

Let everyone have their own content.

Rule 10- The majority of bots aren't allowed to participate here.

Unless included in our Whitelist for Bots, your bot will not be allowed to participate in this community. To have your bot whitelisted, please contact the moderators for a short review.

Partnered Communities:

You can view our partnered communities list by following this link. To partner with our community and be included, you are free to message the moderators or comment on a pinned post.

Community Moderation

For inquiry on becoming a moderator of this community, you may comment on the pinned post of the time, or simply shoot a message to the current moderators.

Credits

Our icon(masterpiece) was made by @clen15!

founded 1 year ago
MODERATORS
_MoveSwiftly@lemmy.world
Thekingoflorda@lemmy.world
ja2@lemmy.world
Rooki@lemmy.world
Boozilla@lemmy.world
911
YSK: Browsing "ALL" at work might get you pulled into an office, even with NSFW off. (lemmy.world)
submitted 1 year ago by rcmaehl@lemmy.world to c/youshouldknow@lemmy.world
243 comments fedilink hide all child comments
 

Why YSK: It appears several Lemmy Instances are flagged as suspicious and at least 1 instance intentionally using the name of ransomware. A couple of the big enterprise monitoring suites (Fortiguard, ZScaler) will flag your account and may end up with you being pulled into an office for an explanation, or worse.

TL;DR: Keep browsing to your local instance at work for now.

(page 2) 50 comments
sorted by: hot top controversial new old
[–] Celsiuss@lemmy.world 17 points 1 year ago (4 children)

I find it crazy that you can get in trouble for browsing the wrong websites. It's illegal where I live to track people's computers.

[–] just_change_it@lemmy.world 12 points 1 year ago

In the US there is no reasonable expectation of privacy on company computers and company networks and to reinforce this usually on day 1 of a job you sign documents explicitly stating they can and will monitor traffic on company systems.

Without monitoring traffic on all company systems there would be no way to know if your company was subjected to a breach. There is mandatory reporting for public companies and part of the reporting includes the capability to monitor for said breaches.

To that end I have to wonder where you are that information security is basically prohibited by law.

[–] Dax87@forum.stellarcastle.net 12 points 1 year ago

Just a distinction: It's most-likely a laptop issued by the company, not a personal computer.

[–] GBU_28@lemm.ee 9 points 1 year ago

Ain't your hardware and/or network

load more comments (1 replies)
[–] r00ty@kbin.life 15 points 1 year ago (4 children)

My company uses zscalar. It's essentially a company endorsed MitM attack and for that reason alone I don't use the work laptop for anything but work.

[–] ram@lemm.ee 16 points 1 year ago

that reason alone I don’t use the work laptop for anything but work

I think that was the goal.

load more comments (3 replies)
[–] this@sh.itjust.works 13 points 1 year ago (1 children)

And this is why I always use a VPN on my phone.

load more comments (1 replies)
[–] Paradox@lemdro.id 13 points 1 year ago* (last edited 1 year ago)

When I used to work in an office, I'd always use wireguard to tunnel my traffic on my phone back through my home IP. Got to use their wifi and still maintain my privacy

This is even easier now with tools like tailscale

[–] dm_me_your_feet@lemmy.world 10 points 1 year ago* (last edited 1 year ago) (1 children)

This does not apply for most european users. Source: I am the one who gets these requests and anyone who isn't a judge gets jack shit. Go pound sand. Anything else would be illegal under privacy and work laws. Even police wont get ANYTHING (judge will reject it) if the crime in question isn't worth at least 2 years of jail time.

Suspected malware domains just get blocked, no further action will ever take place.

load more comments (1 replies)
[–] beneeney@lemm.ee 9 points 1 year ago* (last edited 1 year ago) (4 children)

What's the name of the instance that uses ransomware name?

load more comments (4 replies)
[–] theKalash@feddit.ch 7 points 1 year ago (2 children)

VPN 4tw.

[–] r00ty@kbin.life 16 points 1 year ago

If you just run a VPN things like zscalar will still get you. They'll just send the web traffic through the VPN to their proxies and still log everything you do.

There's ways round it, but all of them will no doubt violate corporate policies.

The only real solution is not to use work computers for non work use.

[–] floofloof@lemmy.ca 10 points 1 year ago* (last edited 1 year ago) (1 children)

If you use a private VPN on a company computer, they can still monitor what you're doing on the local machine, and/or report home through the VPN. And some companies won't even wait to ask what you're doing with a personal VPN on their machine - you'll be in trouble just for installing it.

load more comments (1 replies)
[–] JackbyDev@programming.dev 7 points 1 year ago (1 children)

How? The client should only be talking to your home instance. Your home instance does all aggregation for you. Only Lemmy instances talk to each other and clients talk to one instance. That's how federation works.

[–] rcmaehl@lemmy.world 11 points 1 year ago (2 children)

Non-textual content (media, and icons I believe) is still served from the other instance to prevent all federated instances from exploding in size.

Additionally, some browsers will preload/prefetch links to "improve the browsing experience"

load more comments (2 replies)
load more comments
view more: ‹ prev next ›