1879
you are viewing a single comment's thread
view the rest of the comments
[-] BlueLineBae@midwest.social 245 points 2 months ago

I always refused to put work apps on my personal phone because they would make you agree to some bullshit where they could remote access your phone or potentially wipe it. So I would refuse and say they needed to provide a company phone for me if it was that important. Most companies are either ok with this or provide a phone, except for one company. This was a software company, and literally everything else about this company was a unicorn of a job. But for some reason they wanted me to have slack on my phone and also wouldn't give me a company phone. So I dug up an old phone, reset it to factory settings, and added slack to that so I could say I did it. Then I put the phone away and they never asked about it again. So I really don't know what the point of that was 🤷

[-] classic@fedia.io 128 points 2 months ago

It's less cognitively taxing for me if you just comply with whatever I've decided

[-] brbposting@sh.itjust.works 145 points 2 months ago
[-] bane_killgrind@slrpnk.net 29 points 2 months ago
[-] Rampsquatch@sh.itjust.works 26 points 2 months ago
[-] classic@fedia.io 8 points 2 months ago
[-] brbposting@sh.itjust.works 6 points 2 months ago

We did it, classic

[-] acockworkorange@mander.xyz 6 points 2 months ago
[-] barsquid@lemmy.world 9 points 2 months ago

Would be less cognitively taxing for them if you did.

[-] TexasDrunk@lemmy.world 23 points 2 months ago

I really don't mind these days as long as they have a MDM so I can have it on a separate profile, but without that I'm totally with you.

[-] 200ok@lemmy.world 10 points 2 months ago
[-] Knoxvomica@lemmy.ca 15 points 2 months ago

Mobile device management. Basically software to manage mobile devices owned by a company.

[-] TexasDrunk@lemmy.world 7 points 2 months ago
[-] 200ok@lemmy.world 3 points 2 months ago
[-] 200ok@lemmy.world 2 points 2 months ago
[-] Rekorse@sh.itjust.works 3 points 2 months ago

How does the separate profile keep the company from factory resetting the whole device?

[-] TexasDrunk@lemmy.world 12 points 2 months ago* (last edited 2 months ago)

Because they can only see, install, or wipe things inside the work profile. It's all sandboxed.

Quick edit: This is for Android. I have no idea about iPhones.

[-] Rekorse@sh.itjust.works 4 points 2 months ago

I don't believe iPhone allows this, or at least the customers at my work don't enable it for iOS.

I hadn't had to set it up myself though so I wasnt sure. I would rather avoid the MDM altogether if possible.

[-] TexasDrunk@lemmy.world 3 points 2 months ago

I get it, and I don't blame anyone for that choice. I made mine based on utility, convenience, and knowledge of the tool for me. I don't care how convenient it makes things for work. They'll give me a phone if it's that convenient for them. But I'm not qualified to make that decision for anyone else.

[-] TexasDrunk@lemmy.world 1 points 2 months ago

I shot a message to a colleague who is still in IT (I'm into other shit these days) and he says you're correct. IOS doesn't allow for this. The IT department running Mobile Device Management would have to set up Mobile App Management (MAM) on their side. So it's possible that they only get access to those apps without giving them access to the whole device but a lot of lazy departments won't do it.

[-] Rekorse@sh.itjust.works 1 points 2 months ago

Well that explains why one of the other teams clients revolted against intune and switched to just using MFA for o365.

Its funny, they are so jaded by the MDM they keep grilling people about the MFA and if it gives access to their phones, etc.

I also think some people are starting to catch on to Microsoft's apps collecting too much data, including MFA. Theres a big banner when you first set it up asking for permission.

[-] bitchkat@lemmy.world 11 points 2 months ago

My current pet peeve is Email servers (MS Office) configured to only allow connections from outlook. I'd be happy to add an account to Aquamail but they won't let me. So no work emails on my phone or personal laptop.

Ditto, but this is actually a bonus for me.

"Didn't you see my email and message last evening?"

"Not until I got in today, because it came after I had logged off and I can't see that stuff on my personal phone because, you know, IT policy."

[-] bitchkat@lemmy.world 1 points 2 months ago

It's a trade off because it's handy when you're at an appointment.

[-] bekopharm@discuss.tchncs.de 9 points 2 months ago

for some reason they wanted me to have slack

I get similar requirements from school and kindergarten nowadays. They want me to install weird apps for communications. Last school had an online portal on the web and mail. That was a no brainer but these apps?

Hello Waydroid.

Not gonna taint my own phone with this stuff. That includes WhatsApp.

[-] Salvo@aussie.zone 2 points 1 month ago

Same as. Certain family members expect everyone to be on Facebook and also drink all of Zucks Kool-Aid.

I just don’t go to those family events, unless I’m personally invited. If an event only exists of Facebook, it does not exist to me.

I have 2FA apps on my phone for work. I also have the horrendous HR app for applying for Annual Leave. If they insist that I need more work-related apps on my personal phone, I will be getting a second phone and using that exclusively for work. It will be turned off when I walk out the door at the end of the day and kept in my office drawer.

[-] Nibodhika@lemmy.world 1 points 2 months ago

While I agree with you and understand that perfectly, slack doesn't have that remote management thing, so far I've only seen that Microsoft apps.

[-] Rekorse@sh.itjust.works 3 points 2 months ago

Its a feature of mobile device management software. Intune for microsoft is one but theres also intelligent hub/airwatch, citrix, manageengine, etc.

this post was submitted on 23 Oct 2024
1879 points (98.6% liked)

Malicious Compliance

19678 readers
2 users here now

People conforming to the letter, but not the spirit, of a request. For now, this includes text posts, images, videos and links. Please ensure that the “malicious compliance” aspect is apparent - if you’re making a text post, be sure to explain this part; if it’s an image/video/link, use the “Body” field to elaborate.

======

======

Also check out the following communities:

!fakehistoryporn@lemmy.world !unethicallifeprotips@lemmy.world

founded 2 years ago
MODERATORS