[cap-talk] More Heresey: ACLs not inherently bad
Karp, Alan H
alan.karp at hp.com
Thu Oct 2 17:00:45 CDT 2008
Marcus Brinkmann wrote:
> > When managers give their login credentials to their assistants, they
> > are giving them permission to view the manager's payroll statement,
> > change beneficiaries on the manager's insurance policy, change the
> > manager's withholding amounts, etc. That's a lot of power to give
> > people who may resent how little they are paid for how hard they work.
> > Would you want to give two weeks' notice to someone with that much
> > power over you? My guess is managers would be a lot happier just
> > delegating their manager rights.
>
> Maybe it's just me, but I would pay them more. That is IMO a much
> better security investment than paying for a technical solution which
> is expensive, has a narrow focus, and will be obsolete in a couple of
> years. In addition to give workers more money, it is also a good idea
> to empower and engage them.
>
I hope you are being facetious. There are many reasons one person may wish to retaliate against another one. Giving people that much power is just plain dangerous, but managers have little choice with today's systems.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list