Why YSK: It appears several Lemmy Instances are flagged as suspicious and at least 1 instance intentionally using the name of ransomware. A couple of the big enterprise monitoring suites (Fortiguard, ZScaler) will flag your account and may end up with you being pulled into an office for an explanation, or worse.
TL;DR: Keep browsing to your local instance at work for now.
And this is why I always use a VPN on my phone.
Pro tip: Don’t do not-work stuff on work owned hardware.
I used to sign in to my personal accounts on my work computer. And then a place laid me off and remotely locked the computer before I could sign out of anything, and I realized I had been stupid.
Now I just use my phone. But I also work from home so there’s no one to creep on me and report I’m looking at my phone instead of click clacking away.
Protip use anydesk to connect to your own computer remltely and do personal stuff from there. Then the only link to be severed is anydesk, which can be protected by password and 2fa
Things like gmail let you log out everywhere all at once. But since you are at home now, third monitor for the home pc.
The other day I was on all and there was fucking porn without any NSFW filter on it on some cumsluts community, no co-workers were around thankfully but it was a good wake up call that all is not a place you wanna be unless you are at home.
Wait. Is everything from LemmyNSFW.com NOT auto-tagged, or is that community also on another instance?
You guys aren’t using DoT (DNS-over-TLS) or DoH (DNS-over-HTTPS) ??
Well, you should be using a VPN for privacy anyway, so that wouldn’t be a problem.
Unless you’re handing your phone over and letting them root it, they almost certainly are not MITMing your traffic. At best, they can see you’re using a VPN. If they are able to snoop your traffic, either your VPN is absolutely shit, or you changed some setting you shouldn’t have and fucked yourself.
Its worth noting, you cant actually MITM most traffic without device acess. To MITM my lemmy traffic, you would need either a copy of the certificate and private key of for example lemmy.world, which they would never willingly provide, or you would need to get a valid certificate from a CA for lemmy.world, which you could never get without verifying ownership of the domain.
If you are using a company owned device to browse Lemmy, then 100% they can very easily install a custom Root CA and make their own certificates, and you should assume all your traffic is monitored. But if they allow BYOB or for your phone to be on the network, then they would be unable to see that traffic without you being able to tell, because you would get certificate errors.
But if they allow you to install a VPN, then just use TOR with a TOR bridge and you wouldnt have issues, because they cant tell its VPN / TOR traffic akaik
So if you were, say, using a VPN on your personal phone at work on their internet, would you also get in trouble?
Why would you join your phone to the company wifi? Mobile data is cheap (at least where I am). I’ve never joined my personal phone to an employer’s wifi. At least not in the last five or so years.
