929

YSK: Browsing "ALL" at work might get you pulled into an office, even with NSFW off.

posted
by
Avatar
RCMaehl [Any]@lemmy.world
in
Avatar
youshouldknow@lemmy.world
261 comments
hidereport

Why YSK: It appears several Lemmy Instances are flagged as suspicious and at least 1 instance intentionally using the name of ransomware. A couple of the big enterprise monitoring suites (Fortiguard, ZScaler) will flag your account and may end up with you being pulled into an office for an explanation, or worse.

TL;DR: Keep browsing to your local instance at work for now.

Sort:
HotTopControversialNewOld
You are viewing a single thread.
View all comments
Avatar
AphoticDev@lemmy.dbzer0.com
26 points

Well, you should be using a VPN for privacy anyway, so that wouldn’t be a problem.

permalink
report
reply
Avatar
marmo7ade@lemmy.world
27 points
*
Deleted by creator
permalink
report
parent
reply
Avatar
minorsecond@lemm.ee
5 points

So if you were, say, using a VPN on your personal phone at work on their internet, would you also get in trouble?

permalink
report
parent
reply
Avatar
fuzzzerd@programming.dev
5 points

If it’s a personal device, at worst they would see you are using a VPN and maybe ask what’s up with that, but they can’t mitm you on your own device.

permalink
report
parent
reply
Avatar
🇵🇸 Free Palestine 🇵🇸@lemmy.ml
2 points

Most probably not. Unless you’ve installed custom root certificate provided by them. (which you most probably didn’t)

permalink
report
parent
reply
Avatar
some_guy@lemmy.sdf.org
4 points

Why would you join your phone to the company wifi? Mobile data is cheap (at least where I am). I’ve never joined my personal phone to an employer’s wifi. At least not in the last five or so years.

permalink
report
parent
reply
Show more comments
Avatar
BoneALisa@lemm.ee
14 points
*

Its worth noting, you cant actually MITM most traffic without device acess. To MITM my lemmy traffic, you would need either a copy of the certificate and private key of for example lemmy.world, which they would never willingly provide, or you would need to get a valid certificate from a CA for lemmy.world, which you could never get without verifying ownership of the domain.

If you are using a company owned device to browse Lemmy, then 100% they can very easily install a custom Root CA and make their own certificates, and you should assume all your traffic is monitored. But if they allow BYOB or for your phone to be on the network, then they would be unable to see that traffic without you being able to tell, because you would get certificate errors.

But if they allow you to install a VPN, then just use TOR with a TOR bridge and you wouldnt have issues, because they cant tell its VPN / TOR traffic akaik

permalink
report
parent
reply
Avatar
AphoticDev@lemmy.dbzer0.com
3 points

Unless you’re handing your phone over and letting them root it, they almost certainly are not MITMing your traffic. At best, they can see you’re using a VPN. If they are able to snoop your traffic, either your VPN is absolutely shit, or you changed some setting you shouldn’t have and fucked yourself.

permalink
report
parent
reply
Avatar
oatscoop@midwest.social
35 points

Do you guys not have phones?

permalink
report
parent
reply
Avatar
lando55@lemmy.world
32 points

My phone is exclusively used to play Diablo

permalink
report
parent
reply
Avatar
Gork@lemm.ee
5 points

Ah yes I understand this reference.

permalink
report
parent
reply
Avatar
Pokethat@lemm.ee
3 points

You put a VPN on your company phone?

permalink
report
parent
reply
Avatar
AphoticDev@lemmy.dbzer0.com
19 points

You’re using personal software like Lemmy on your company phone?

permalink
report
parent
reply
Avatar
Pokethat@lemm.ee
1 point

No, I was asking if you did

permalink
report
parent
reply
Show more comments
Avatar
Ironfist@lemmy.world
2 points

omg people, dont do personal stuff on your work machine or connected to your work network. A vpn wont save you from all the software they install in your machine to track you. Use your phone with your mobile data.

permalink
report
parent
reply

You Should Know

!youshouldknow@lemmy.world

Create post

YSK - for all the things that can make your life easier!

The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:

Rules (interactive)

Rule 1- All posts must begin with YSK.

All posts must begin with YSK. If you’re a Mastodon user, then include YSK after @youshouldknow. This is a community to share tips and tricks that will help you improve your life.

Rule 2- Your post body text must include the reason "Why" YSK:

**In your post’s text body, you must include the reason “Why” YSK: It’s helpful for readability, and informs readers about the importance of the content. **

Rule 3- Do not seek mental, medical and professional help here.

Do not seek mental, medical and professional help here. Breaking this rule will not get you or your post removed, but it will put you at risk, and possibly in danger.

Rule 4- No self promotion or upvote-farming of any kind.

That’s it.

Rule 5- No baiting or sealioning or promoting an agenda.

Posts and comments which, instead of being of an innocuous nature, are specifically intended (based on reports and in the opinion of our crack moderation team) to bait users into ideological wars on charged political topics will be removed and the authors warned - or banned - depending on severity.

Rule 6- Regarding non-YSK posts.

Provided it is about the community itself, you may post non-YSK posts using the [META] tag on your post title.

Rule 7- You can't harass or disturb other members.

If you harass or discriminate against any individual member, you will be removed.

If you are a member, sympathizer or a resemblant of a movement that is known to largely hate, mock, discriminate against, and/or want to take lives of a group of people and you were provably vocal about your hate, then you will be banned on sight.

For further explanation, clarification and feedback about this rule, you may follow this link.

Rule 8- All comments should try to stay relevant to their parent content.
Rule 9- Reposts from other platforms are not allowed.

Let everyone have their own content.

Rule 10- The majority of bots aren't allowed to participate here.

Unless included in our Whitelist for Bots, your bot will not be allowed to participate in this community. To have your bot whitelisted, please contact the moderators for a short review.

Partnered Communities:

You can view our partnered communities list by following this link. To partner with our community and be included, you are free to message the moderators or comment on a pinned post.

Community Moderation

For inquiry on becoming a moderator of this community, you may comment on the pinned post of the time, or simply shoot a message to the current moderators.

Credits

Our icon(masterpiece) was made by @clen15!

Community stats

  • 4.8K

    Monthly active users

  • 390

    Posts

  • 16K

    Comments

Community moderators