I didn't fight a culture change in our work dynamic as we went from an extroverted office to a mostly headphones-on culture where people would even sometimes type instead of talk in certain meetings. In the end, I don't think it mattered except that resisting change and insisting on my way could have (would have) backfired.
Didn't see any data in the article, not that I disagree, yet what if AirPods allow a return to normality for those who wish to have some distance?
Maybe everyone's just had to put up with extroverted norms until AirPods and mobile phones came along.
Q: Do you consider yourself more introverted or more extroverted?
9% Completely introverted
29% More introverted than extroverted
31% About an equal mix of extroverted and introverted
Disk encryption is also mandated in most enterprises.
I do not mean to patronize, it's just the enterprise-y stuff has tried locking down the PCs for exactly this reason - deleting the security tools when they're not loaded would be of course very effective.
On top of that, showing such motivation can expose people to violating the 782 commandments of whatever corporate IT policy someone had to sign to get a paycheck.
Rare is the security vs usability compromise in these companies that accounts for the need for high performance desktops, sadly.
I replied above but basically we still need something; some people are just incapable of not making a total mess and they will literally go to Trojan.com and install dangerous.msi, ignore all the optional dismissible pop ups that say this is bad, and then still drop me a DM that the cracked plugin they got for maya to try out before asking to spend $8 isn’t working…
The person mentioned is a special case but the reality is that most people do need _something_. What happens if one trusted person makes a mistake and submits an exe to perforce? Now absolutely everyone is hosed.
Why would everyone be hosed just because a binary got committed to version control? Either way, surely you can set up some policies or monitoring for that sort of thing.
I don't know, I've been developing on Windows for decades without an antivirus and I've never had these issues. Are your people downloading and installing random software all the time? In my experience, once I'm set up with my usual tools I rarely need to install anything else.
>Are your people downloading and installing random software all the time?
Yeah, just looking at the app control logs, they evidently wanted a weird notepad app, someone else tried a bespoke browser, random browser extensions, some audio tool instead of using the licensed Adobe products, whatever. That's before we get into the people who try to install games or cursors or custom wallpaper and amusement widgets. There always seems to be someone who uses the work tools for porn and clicks on things. These things show up in 5-person and 5000-person offices alike.
Good judgment gets individuals pretty far but it's not workable with a critical mass of people. Many orgs are under attack from convincing and intentional spearphishing, and the common denominator in how most attacks start is people. Not all attacks, but lots.
On top of that, I think we'd fall behind on some of these attacks without stuff like 3rd party 24/7 SOCs - the last few incidents I read, cookies were re-used in seconds after being phished, and command and control sessions were detected almost immediately in a different attack.
I find all of this exhausting stuff as the norm when I talk to people across the industry, and yet I don't bother at all at home - I'm living both realities.
> Why would everyone be hosed just because a binary got committed to version control?
We’re hosed if someone submits malware to source control and other people run it?
> Either way, surely you can set up some policies or monitoring for that sort of thing.
Like a tool that comes with windows that checks that nobody has done that, called windows defender? The tool I have a problem with?
> I've been developing on Windows for decades without an antivirus and I've never had these issues
This is a 100 person company with maybe 30 programmers, 30 artists and 30 designers. I don’t know which of those people are “capable” - and the people who say they are are the people I probably trust least. In a perfect world we’d tell everyone to be careful, and not click on random phishing links, and they’d listen. But they don’t, and we have to take some basic precautions. Using the OS provided, historically good, tools is a good starting point.
> Are your people downloading and installing random software all the time?
Dunno, we don’t monitor what people do. We just get an email if defender quarantines something. But we’re dealing with people working from home, and being given gaming spec machines. I would put money in the fact that people are using these for personal use.
>Like a tool that comes with windows that checks that nobody has done that, called windows defender? The tool I have a problem with?
No, like a tool that's running on a machine of its own, monitoring what gets pushed to version control, or a policy on the version control server that rejects attempts to push files of the wrong type.
Eugh. Well, whatever. Not like it makes any difference to the employee. They get paid whether they're waiting for the computer to finish spinning or doing useful work.
We’re spending $4-8000 on these machines to try and offset these problems.
The problem is that there’s 100 of these “little” issues - and I have a full time job that _isnt_ doing IT support. If someone can help me find an IT support contractor that I can hire that will fix it I’d love to chat to them, but it goes in the pile alongside “why on earth does teams take longer to boot than my entire machine” and “why are we using zoom (because the person who makes the decision there prefers zoom to teams”)
Yes, it's usually a filter driver that delays execution until something like a hash is checked or other rules evaluate. Some products hash every interesting/executable file on the PC. They're powerful tools but can be extremely performance-sapping.
It's sad. Further compounding the problem like siblings have said is enterprise security stack stuff - EDRs/XDRs, app control, firewalls, productivity police nonsense.
The second thing is that enterprises typically don't have someone fighting for the desktop UX to remain usable when PC fleets go up for purchase - pick the cheapest toilet paper is often the strategy of the day. Now you have a PC that hits a bargain price point that seemed attractive on some analysis to the CFO, it's been saddled with security software that saps 50% of the limited performance to begin with.
>Why, exactly, would a forced change of habits be for my own good?
At the personal level, it wouldn't be. It makes a lot of sense, and I do the same with Fastmail.
At the corp level where it's often in M365 cloud, you've got hard limits from Microsoft on one hand (100GB primary mailbox - period), and corporate data retention limits on the other. Legal often has strong opinions on how long you are allowed to retain emails which you may or may not be able to personally override. Could be just a few years, which forces a different strategy.
I'm not sure on the details of Google, but one imagines corp workspaces have equivalent interests.
I don't recall any kind of retention limits at Microsoft, at least not for engineers. My mail archives went all the way back to my hire date even 15 years later.
My company moved to a 3 year retention for legal purposes a few years ago. Somewhat annoying from a nostalgia point of view when I’d get mails pop up from 2095, but everything I need has been in jiras for the last 10 years.
When I worked at Capital One there was a policy of automatically deleting everything that had not been subpoenaed as soon as it was legal to delete it. Usually 3 years or so. Retaining longer was viewed as creating legal risk for future lawsuits. They didn't want to leave evidence lying around if they could help it.
Basic routing and switching - expect line speed.
Don't expect analysis features to run at line speed - 30-50% penalty could be normal depending on throughput.
Stay away from IPS and complicated firewall rules which usually are done in CPU, and you should be fine. HW acceleration for those (esp. TLS decryption) is a major reason fancy firewalls are very expensive. You're better off building an IDS or picking up a smaller FortiGate or Palo Alto firewall if you really want to get serious there.
He did say intrusion detection so that's probably it. That, and if you're using any kind of complicated firewall rules, those aren't HW accelerated like enterprise gear, so throughput tanks.
Think about the competitors - they're aiming at the Synology RackStations and similar, which are $3-5k without drives.
The segment UI and Synology are in are 10x more than the minisforum, beelink, qnap, cwwk type devices, but still 1/10 of the price of getting started in enterprise gear from HPe, Dell, Pure, etc.
+1 for Dream Machine Pro. Own one at home and have stretched them pretty far in SMB environments.
I use it with 8 APs in a mesh and a few switches, all UI, and it just works. I also have a lot of success helping out some local SMBs by setting up UI for them.
Didn't see any data in the article, not that I disagree, yet what if AirPods allow a return to normality for those who wish to have some distance?
Maybe everyone's just had to put up with extroverted norms until AirPods and mobile phones came along.
Q: Do you consider yourself more introverted or more extroverted?
9% Completely introverted
29% More introverted than extroverted
31% About an equal mix of extroverted and introverted
15% More extroverted than introverted
7% Completely extroverted
9% Not sure
n=1000 2023 YouGov internet poll
https://docs.cdn.yougov.com/rwpllcwimy/Introverts%20and%20Ex...
Also, Susan Cain's book Quiet claimed 1/3 to 1/2 of the population are introverted. (Who knows)
reply