The company will disable internet access on the select desktops, with the exception of internal web-based tools and Google -owned websites like Google Drive and Gmail. Some workers who need the internet to do their job will get exceptions, the company stated in materials.

In addition, some employees will have no root access, meaning they won’t be able to run administrative commands or do things like install software.

  • @dan1101@lemmy.world
    link
    fedilink
    English
    361 year ago

    Probably not a bad idea. Google used to be full of tech nerds but it gets more corporate and bland all the time.

        • ndguardianA
          link
          English
          31 year ago

          You’ll have to pry my root access from my cold dead fingers!

          jk…take it. I’d rather not have to worry about OS-level shenanigans anymore.

  • Streetdog
    link
    fedilink
    English
    191 year ago

    Not surprising Google can’t handle tech security. I can’t be bothered to look more into the report, but it sure sounds like they don’t know tech. They’re a marketing firm.

    • @mycroft@lemmy.world
      link
      fedilink
      English
      91 year ago

      That honestly just sounds like they’re going after more government contracts. Gov’t compliance can sometimes require asinine security controls because they expect the users are the weakest link in every design. That can sometimes be true, but when folks are developing things you sometimes have to let them make foot guns or they can’t build things.

      • @WrittenWeird@lemmy.world
        link
        fedilink
        English
        71 year ago

        Not just government. The security questionnaires from companies of all types I had to complete in my last job were insane. If you’re sharing data between organizations in any way, infosec and legal departments get very uppity these days.

        • 50gp
          link
          fedilink
          21 year ago

          just need that one idiot to fall for obvious scam mails and your security is compromised

      • Streetdog
        link
        fedilink
        English
        -41 year ago

        Then vote for Google. I just commented for the (non-)tech, not the politics.

  • @Puzzle_Sluts_4Ever@lemmy.world
    link
    fedilink
    English
    14
    edit-2
    1 year ago

    I mean, that is all really good?

    If a machine does not need internet access, it should not have it. Airgaps/incredibly restrictive firewalls are pretty much the only true defense for attacks and social engineering.

    As for developers: If you are making enough money to justify needing this level of security, then you can afford to buy everyone a second computer/laptop.

    At my old gig this was exactly the development model. Sensitive material happens on the computer on on side of the office, non-sensitive development and communication happens on the other. Wheel between desks depending on my task.


    Same with root. No developer needs root if you have a competent-ish IT department. At my current gig, we actually use a VDI setup where asking for software to be installed on my “workstation” is literally a pull request that an authorized staff member approves.

  • Hogger85b
    link
    fedilink
    10
    edit-2
    1 year ago

    Shouldn’t use admin account/machine for general browsing the web. Have one machine to browse and development and another to connect to anything you want to protect from risk of attack

  • Jaysyn
    link
    fedilink
    -31 year ago

    Enshitifcation of a corporation is a thing too.