I've spent a lot of time over the past couple of weeks working with various software vendors both on site and remotely. These vendors were in various stages of trying to install software on several of our Clients networks. I have to say that it amazes me that the skill level of some of these technicians is terrible. And their understanding of network security is non-existent.
Most of these people probably know their software very well (I would hope). But many of them know nothing about the servers or networks they are trying to install on. This can be very serious for the stability of your network as well as the security level. Most of these vendors think nothing of asking for the administrative password or asking me to open up folders to "Everyone". Many have installed software that has caused network related issues. (Ooops, sorry!)
For our Clients, watch those software vendors! They may not be as smart as you or they think they are. They can compromise the security of your data and/or cause harm to your network. Don't give them free reign.
For you software vendors, security is not something you should be compromising. Make your software works correctly, and train your installers better. Getting your software up and running at all costs is simply not acceptable.
No comments:
Post a Comment