• pedz@lemmy.ca
    link
    fedilink
    arrow-up
    48
    ·
    2 months ago

    I have been working from home for years and my employer is not watching our screen. However about a decade ago we received a company wide email from an admin reminding everyone that they can see DNS requests when we’re connected to the VPN.

    • Taleya@aussie.zone
      link
      fedilink
      arrow-up
      33
      ·
      2 months ago

      Thats why i have a laptop for work, solely for work, nothing but work right next to my big rig

      • Echo Dot@feddit.uk
        link
        fedilink
        arrow-up
        19
        arrow-down
        2
        ·
        2 months ago

        Wait they didn’t give you a laptop? If they want you to work remotely they really should be giving you a device.

        • Taleya@aussie.zone
          link
          fedilink
          arrow-up
          3
          ·
          edit-2
          2 months ago

          Nah, i actually wanted to use my own equipment (tax purposes). All the shit is web based anyway

        • corsicanguppy@lemmy.ca
          link
          fedilink
          English
          arrow-up
          1
          ·
          edit-2
          2 months ago

          They have to in this country. As we deal with not-secret-but-private stuff at my job, they had to supply us some gear to lock down and we DMZed it.

    • Trainguyrom@reddthat.com
      link
      fedilink
      English
      arrow-up
      13
      ·
      2 months ago

      Sounds like he’s remoting into the computer in the office from another computer at home (pretty common in IT since you probably have admin tools perfectly configured on that computer and specifically configured for its network config) but with Windows Remote Access it lets the person physically at the computer see everything by default. But i would really hope that someone in IT would be painfully aware of why you shouldn’t do sensitive personal browsing on a work computer or a work network

      • lud@lemm.ee
        link
        fedilink
        arrow-up
        5
        ·
        2 months ago

        I don’t RDP that often to physical devices, but I’m pretty damn sure the default settings for RDP forcefully logs/locks out your user on the physical device and only your lock screen is visible. I have never tried it but I’m also pretty sure it’s possible to have two logged in users at once, one using RDP and one using the physical device.

        • Trainguyrom@reddthat.com
          link
          fedilink
          English
          arrow-up
          2
          ·
          edit-2
          2 months ago

          I was blanking pretty hard when I wrote that and meant to write RDP while thinking of TeamViewer. Need to post stuff less late at night

        • mark@infosec.pub
          link
          fedilink
          arrow-up
          1
          ·
          2 months ago

          For desktop windows this is not true. A remote sign in will sign out the local user and vice versa

        • DokPsy@infosec.pub
          link
          fedilink
          arrow-up
          1
          ·
          2 months ago

          Remote access with continuum/connectwise, TeamViewer, etc gains access to the screen including for control but doesn’t normally black out anything locally.

          If its in a common area with speakers, anyone can both see and hear anything done on the machine.

      • fatalicus@lemmy.world
        link
        fedilink
        arrow-up
        5
        arrow-down
        1
        ·
        2 months ago

        pretty common in IT

        I’ve never heard of anyone in IT regularly remoting to their work computer.

        If we remote anywhere it is to a jump host, and those are terminal servers, so no monitor connected.

        • Echo Dot@feddit.uk
          link
          fedilink
          arrow-up
          4
          ·
          2 months ago

          Yeah this is a pretty weird setup they’ve got going on.

          Like you say they’re going to be remoting onto their work computer and then having their remote connection remote onto another remote terminal server.

          It’s a holographic holodeck all over again.

        • MagicPterodactyl
          link
          fedilink
          arrow-up
          1
          ·
          2 months ago

          I think it’s kind of an old school way of doing things. My old sys admin boss did that every day up until her retired.

    • orcrist@lemm.ee
      link
      fedilink
      arrow-up
      8
      ·
      2 months ago

      That means they’re monitoring them … Gotta exploit that, see what happens.