this post was submitted on 22 Aug 2023
404 points (95.3% liked)

Work Reform

10044 readers
922 users here now

A place to discuss positive changes that can make work more equitable, and to vent about current practices. We are NOT against work; we just want the fruits of our labor to be recognized better.

Our Philosophies:

Our Goals

founded 1 year ago
MODERATORS
 

A new survey shows that the vast majority of senior executives say would've approached their return-to-work push "differently."

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 20 points 1 year ago (2 children)

I doubt it. The home network does not need to be secure. That is why you have VPNs and other such technology.

[–] KnightontheSun 3 points 1 year ago (2 children)

Some networks are not accessible via vpn.

[–] ngdev 5 points 1 year ago (1 children)

In those cases it's justifiable to have to work in-person. I don't think we'd want closed networks (presumably for stuff like nuclear power) exposed to the open internet.

[–] ZoopZeZoop 6 points 1 year ago

True, but that won’t be most of the work force. There will always be exceptions for security/defense and some other areas. I suspect those areas already had a process for monitoring the comings and goings of staff and any off-site work. I also suspect the amount of off-site work was limited to begin with if it impacted security/defense.

[–] atx_aquarian 3 points 1 year ago* (last edited 1 year ago) (1 children)

Those networks are also not accessible from home networks, then. That is to say it's a valid point regarding each industry and company having different constraints, but it's not a concern over the security of home networks. If home/remote network security is ever the limiting concern, that can be mitigated by VPN.

[–] couragethebravedog -1 points 1 year ago

The issue of using a work device outside of the office is if you ever connect it to your home network off of the VPN, then there is a chance the device is compromised. A malicious actor could have targeted you because they want to gain access to your company and they saw on your LinkedIn that you work remotely. So they simply use some OSINT to find your address, run a geo search on shodan and wiggle to identify your homes IP, then use that as an entry point to compromise your router and wait for your device to connect to continue the attack. This may sound complicated or a lot of work but this is actually quite simple to do and takes only 10 - 15 minutes.

[–] couragethebravedog 0 points 1 year ago (1 children)

It's also about physical security, protecting access to your work laptop and protecting IP. That VPN is completely useless if someone can get into your home and access your device. It's way easier to get into someone's home than into a properly secured office.

[–] [email protected] 0 points 1 year ago* (last edited 1 year ago)

That's also why you encrypt your drives. The average enterprise figured out how to let somebody work from an airport long ago. It's really not a huge deal.