this post was submitted on 23 Oct 2024
1867 points (98.6% liked)
Malicious Compliance
19559 readers
2 users here now
People conforming to the letter, but not the spirit, of a request. For now, this includes text posts, images, videos and links. Please ensure that the “malicious compliance” aspect is apparent - if you’re making a text post, be sure to explain this part; if it’s an image/video/link, use the “Body” field to elaborate.
======
-
We ENCOURAGE posts about events that happened to you, or someone you know.
-
We ACCEPT (for now) reposts of good malicious compliance stories (from other platforms) which did not happen to you or someone you knew. Please use a [REPOST] tag in such situations.
-
We DO NOT ALLOW fiction, or posts that break site-wide rules.
======
Also check out the following communities:
[email protected] [email protected]
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I always refused to put work apps on my personal phone because they would make you agree to some bullshit where they could remote access your phone or potentially wipe it. So I would refuse and say they needed to provide a company phone for me if it was that important. Most companies are either ok with this or provide a phone, except for one company. This was a software company, and literally everything else about this company was a unicorn of a job. But for some reason they wanted me to have slack on my phone and also wouldn't give me a company phone. So I dug up an old phone, reset it to factory settings, and added slack to that so I could say I did it. Then I put the phone away and they never asked about it again. So I really don't know what the point of that was 🤷
It's less cognitively taxing for me if you just comply with whatever I've decided
Amazing
I love this.
Zeitgeist material
We did it, classic
I don’t like the font.
Would be less cognitively taxing for them if you did.
I really don't mind these days as long as they have a MDM so I can have it on a separate profile, but without that I'm totally with you.
What's MDM?
Mobile device management. Basically software to manage mobile devices owned by a company.
Or work profiles on BYODs
Thank you
Thank you
How does the separate profile keep the company from factory resetting the whole device?
Because they can only see, install, or wipe things inside the work profile. It's all sandboxed.
Quick edit: This is for Android. I have no idea about iPhones.
I don't believe iPhone allows this, or at least the customers at my work don't enable it for iOS.
I hadn't had to set it up myself though so I wasnt sure. I would rather avoid the MDM altogether if possible.
I get it, and I don't blame anyone for that choice. I made mine based on utility, convenience, and knowledge of the tool for me. I don't care how convenient it makes things for work. They'll give me a phone if it's that convenient for them. But I'm not qualified to make that decision for anyone else.
I shot a message to a colleague who is still in IT (I'm into other shit these days) and he says you're correct. IOS doesn't allow for this. The IT department running Mobile Device Management would have to set up Mobile App Management (MAM) on their side. So it's possible that they only get access to those apps without giving them access to the whole device but a lot of lazy departments won't do it.
Well that explains why one of the other teams clients revolted against intune and switched to just using MFA for o365.
Its funny, they are so jaded by the MDM they keep grilling people about the MFA and if it gives access to their phones, etc.
I also think some people are starting to catch on to Microsoft's apps collecting too much data, including MFA. Theres a big banner when you first set it up asking for permission.
My current pet peeve is Email servers (MS Office) configured to only allow connections from outlook. I'd be happy to add an account to Aquamail but they won't let me. So no work emails on my phone or personal laptop.
Ditto, but this is actually a bonus for me.
"Didn't you see my email and message last evening?"
"Not until I got in today, because it came after I had logged off and I can't see that stuff on my personal phone because, you know, IT policy."
It's a trade off because it's handy when you're at an appointment.
I get similar requirements from school and kindergarten nowadays. They want me to install weird apps for communications. Last school had an online portal on the web and mail. That was a no brainer but these apps?
Hello Waydroid.
Not gonna taint my own phone with this stuff. That includes WhatsApp.
Same as. Certain family members expect everyone to be on Facebook and also drink all of Zucks Kool-Aid.
I just don’t go to those family events, unless I’m personally invited. If an event only exists of Facebook, it does not exist to me.
I have 2FA apps on my phone for work. I also have the horrendous HR app for applying for Annual Leave. If they insist that I need more work-related apps on my personal phone, I will be getting a second phone and using that exclusively for work. It will be turned off when I walk out the door at the end of the day and kept in my office drawer.
While I agree with you and understand that perfectly, slack doesn't have that remote management thing, so far I've only seen that Microsoft apps.
Its a feature of mobile device management software. Intune for microsoft is one but theres also intelligent hub/airwatch, citrix, manageengine, etc.