Power Users can install software just FYI. Jon
On Thu, Jan 14, 2010 at 9:41 AM, John Aldrich <jaldr...@blueridgecarpet.com>wrote: > Sounds reasonable to me. I wish I could enforce a more restrictive policy > than we do here, but I really don’t have the resources to enforce much of > anything. We have people using FaceBook/MySpace and doing online shopping, > etc. I’ve told people numerous times not to download anything, period, > without explicit permission, but they tend to do so anyway, up to and > including installing apps. > > > > I finally had enough of people installing crap with spyware attached and > pretty much removed local admin permissions and made most users “Power > Users” so they can have enough permissions to run stuff, but not install > anything! So far that seems to be working. As I work on desktop machines, I > find coupon printer software and other “crap” that has been installed over > the years and clean it out. > > > > Back to the topic at hand, I think that’s a reasonable policy. I would > suggest outlawing social networking sites and game sites (yahoo games) as > those often seem to have spyware/adware associated with them and even just > playing online games could lead to a “drive by install” of malware due to > exploits. > > > > [image: John-Aldrich][image: Tile-Tools] > > > > *From:* James Kerr [mailto:cluster...@gmail.com] > *Sent:* Thursday, January 14, 2010 9:35 AM > *To:* NT System Admin Issues > *Subject:* Internet Policy > > > > I know this has been discussed in the past but I'm in the process of making > changes to ours so I was interested in a little input from my peers. We have > always had a policy of not allowing our desktops, email and Internet > connection to be used for personal use at all. That being said we have > always turned a blind eye to occasional personal use through the day. This > has been a problem for us. Now we are looking to change the policy to > reflect that we do allow this type of use. > > > > We want the staff to know that's its ok but we also want them to know > what's not ok. I was looking to basically say the following. "Some > personal Internet use is allowed but must not interfere with the performance > of work duties and responsibilities. Personal Internet use must be > restricted to reasonable sites and materials such as news or information > that might be considered reasonable if read as a text publication in an > office environment." I’m also going to add that downloading files is not > allowed unless approved by IT and that this includes email attachments from > personal email as well. Any thoughts? > > > > James > > > > > > > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
<<image001.jpg>>
<<image002.jpg>>
