I guess we're not always professionals at all the work that we do, if that makes sense

Coworker implies paid work, and therefore they are not amateurs. They very well may make the same mistakes, but those mistakes would be professional mistakes.

Why this level of pedantry when the meaning is absolutely clear? A professional can make an amateur mistake. This makes perfect sense. That isn't implying the professional is actually an amateur, but that he made a mistake that an amateur would make.

For some added pedantry: aren't all the mistakes that a professional might make, also ones an amateur would make?

In fact, it seems like an amateur is likely to run into all mistakes more often, thereby making all mistakes amateur mistakes; unless there some class of mistake that amateurs are better at avoiding?

There are probably mistakes an amateur cannot make because they can't penetrate the problems where the mistakes would be made.

That is some next-level bad faith. Impressive.

If it's internal, did they really need to have auth?

YES!!! You need auth to prevent employees from looking up sensitive user data without a good reason, or it'll be a stalker's haven. And to prevent possible intruders from gaining more data/access. Defense in depth. And for preventing an experiment from wiping use data. And for so many other reasons!

The term of art is "Friendly fraud".

A significant amount of product stolen from retail stores actually goes out the back door.

> If it's internal, did they really need to have auth?

Nothing on a network is truly internal. The moment you break the physical link between metal and man you're in an unintuitive, and thus insecure, state.