• Fushuan [he/him]@lemm.ee
    link
    fedilink
    English
    arrow-up
    7
    arrow-down
    2
    ·
    1 year ago

    if you don’t have your personal browsing using a private profile of a secondary browser which you know you can delete, you are doing it wrong.

    • rmuk@feddit.uk
      link
      fedilink
      English
      arrow-up
      11
      ·
      1 year ago

      That might not be enough. I could monitor that on all the devices I manage, if I need to. There are tools to dump browsing info as it’s being committed, or it’s easy to pipe all the traffic from your machine through a VPN to a firewall I manage with a trusted cert injection into your device and inspect the traffic in transit. If you don’t want your employer to see what your up to, don’t use their infrastructure.

      • Fushuan [he/him]@lemm.ee
        link
        fedilink
        arrow-up
        3
        ·
        edit-2
        1 year ago

        Well, yeah, if I worked at home I would use my personal computer for personal things and the workstation for work, it would be pristine. But alas, in the office there’s so much time I can spend pretending that I’m working because I finished my tasks before I implode.

        Some risks are necessary :)

        It’s not really about IT not knowing, but about being discreet enough that your boss doesn’t see your personal accounts logged in or even worse, to have two chrome profiles, both with obscure names, press the wrong one and to share the screen of saved tabs with Facebook, Instagram, pornhub… Yeah I’ve seen those bookmarks.

        It’s… Wtf… If you’re going to be that deranged, at the very least be discreet… Sigh.

        • rmuk@feddit.uk
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          Some risks are necessary :)

          No, it’s zero-trust all the way down!

          not really about IT not knowing

          All true, and I’m sure your IT doesn’t care as long as you’re not taking stupid risks

          If you’re going to be that deranged, at the very least be discreet

          I’ve seen things you people wouldn’t believe… a folder full of photos of a sales rep’s feet taken under the table at a meeting… a bookmarked playlist of adult baby porn labelled “Potential Suppliers”… I watched a modded BitTorrent client try to fake VLAN tags for unrestricted Internet access. All those moments will be lost in time, like that expensive label printer from my locked desk drawer… time to get another coffee…

    • rog@lemmy.one
      link
      fedilink
      arrow-up
      5
      ·
      1 year ago

      As an IT administrator, if your org has GPOs controlling if you can delete your browsing history or not, there is no chance you will be able to install a second browser without admin credentials.

      • kaesaecracker@leminal.space
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        1 year ago

        I can confirm there are places where that is possible.

        Also as long as they do not whitelist executables, you could use a portable version of a browser.

        • maynarkh@feddit.nl
          link
          fedilink
          arrow-up
          2
          ·
          1 year ago

          And you would still get caught on the company device trusting company CAs, thus enabling them to decrypt all your traffic.

          Use a personal device on a personal network for personal stuff.

          • kaesaecracker@leminal.space
            link
            fedilink
            English
            arrow-up
            1
            ·
            1 year ago

            I was talking about the history on device, of course I agree: never expect privacy on a device controlled by someone else.

    • hypelightfly@kbin.social
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      Yeah, I can still see that activity. You’re still doing it wrong.

      Personal device not on corporate network or you’re doing it wrong.

      • Fushuan [he/him]@lemm.ee
        link
        fedilink
        English
        arrow-up
        1
        ·
        1 year ago

        Sure but people see that you are on the phone while the IT people don’t really care what you do and by bosses aren’t checking those logs so idc. it’s about being discreet on some layers.

        If I were at home I wouldn’t need to do anything to hide it since I would use my pc but since I’m in the office I have to get creative.

        Also, 5hisbpost was 7 days old :)