Dept of Defense employees can no longer visit eBay.com at work due to new vulnerabilities
jessewvu
Posts: 5,065 ✭✭✭✭✭
Now, before you all start in on government employees using government computers to visit eBay, we all know how deplorable it is. Your comments to that end are completely unnecessary and should be considered bad form. I have an iphone so I don't use my gov computer to look at anything on ebay or other similar sites. With that said...
I got a base-wide email at work that we are no longer allowed to visit eBay sites while at work due to a new risk of viruses and spyware. Has anyone else heard of these new vulnerabilities?
I got a base-wide email at work that we are no longer allowed to visit eBay sites while at work due to a new risk of viruses and spyware. Has anyone else heard of these new vulnerabilities?
0
Comments
have said something prior to your notice. I hope it's wrong information.
bob
PS: retired and surf from home only!
Dwayne F. Sessom
Ebay ID: V-Nickel-Coins
<< <i>I hope they don't shut down your port to access eBay... then you won't be able to access any website!
It's a security violation and it prevents you from logging into your computer. You essentially are at a work stoppage until the IT folks "clean" your computer which takes between two and three weeks. It's a pretty big deal when they shut your port down.
I seriously doubt it's a productivity issue. They did this to folks using google chat when it came out about two years ago because they viewed it as a security issue. I'll ask around the office on Monday and see what the deal is.
As far as google chat, and any other IM for that matter... when Microsoft developed Windows they left three ports open which caused a major vulnerability for security when you use an IM, it's a catch-22; if you close them, you can't use chat... if you leave them open, you can be attacked.
As a sidenote, a common Army Signal vulnerability is... when they disable a website (IP or series of IP or DNS name) they leave the https domain open. If the website has a https domain, e.g., Facebook, you will still be able to use facebook if they only blocked http. I don't believe eBay has an https domain?
but some eBay auctions have imbedded links
which could take you ????
ebay
Facebook
mail systems of any kind except your gov't Outlook email
chat of any kind (for some reason the PM function here is ok)
any known auction site
any cached web pages on google
LinkedIn
Also, no cell phone of any kind is allowed. No flash drive of any kind allowed
There are probably 100 other sites that I don't know about that are blocked
<< <i>I work on an Army base. The following is a list of prohibited sites:
ebay
Facebook
mail systems of any kind except your gov't Outlook email
chat of any kind (for some reason the PM function here is ok)
any known auction site
any cached web pages on google
LinkedIn
Also, no cell phone of any kind is allowed. No flash drive of any kind allowed
There are probably 100 other sites that I don't know about that are blocked >>
Your base still allows porn?
oops... and here I am on the forum...
...well... gosh darn it... I am entitled to a break now and then... aren't I? ...
Never tried it on the base.
At what level of authority was this policy enacted at?
That was a mistake wasn't it?
BTW - This whole WikiLeaks as the start of bringing down all the Middle Eastern countries I think was planted by us. Stuxnet, WikiLeaks, the face of the new Cold War. So yeah, these websites can have vulnerabilities that you don't realize. Maybe Stuxnet was downloaded from an Ebay site to begin with.
I've been told I tolerate fools poorly...that may explain things if I have a problem with you. Current ebay items - Nothing at the moment
<< <i>I can understand it completely. It may be tough if you are just doing an occasional purchase but way too many people looking for a way in to gov lines. >>
Don't be silly or naive. Any DoD network worth protecting isn't even connected to the internet and the Government NIPR net that is connected is well protected. That being said, nothing that does touch the internet is 100% safe but one web site is as dangerous as the next if the person activates the various exploits out there.
blast me for being liberal, but an occaissional look-see wouldn't be bad to me.
On the other hand, I've worked with people that seemingly had second jobs at work.
<< <i>Dang it, Crypto, you're ruining a good rant.....is that also considered "bad form"?
Add it to the rules!
<< <i>Is this DOD policy or just one bases policy?
At what level of authority was this policy enacted at? >>
I retired from DoD three years ago. They have always had a policy of not visiting non-work related sites and I know people that received letters of caution for doing so. I also recall them outlawing the use of flash drives in DoD computers (even the flash drives they provided) after it was discovered that some flash drives were programmed to upload info off the hard drive to China. China doesn't need a strong military, they have a strong IT Department and a strong economic policy.
ZeroHedge makes debut at White House press corps briefing
<< <i>
<< <i>I can understand it completely. It may be tough if you are just doing an occasional purchase but way too many people looking for a way in to gov lines. >>
Don't be silly or naive. Any DoD network worth protecting isn't even connected to the internet and the Government NIPR net that is connected is well protected. That being said, nothing that does touch the internet is 100% safe but one web site is as dangerous as the next if the person activates the various exploits out there. >>
You are aware that tests have proven the vulnerabilities of the networks not even on the grid - am quite sure that they are being watched heartily in Beijing.
<< <i>I also work for the Army, Ebay has been blocked on our system for years...................... >>
Local policy based off of work place efficiency, nothing more.
If I am paying someone to work, I expect them to work, not play on the computer. If they want to play online then punch out and play or go home and do it.
<< <i>If I am paying someone to work, I expect them to work, not play on the computer. If they want to play online then punch out and play or go home and do it. >>
Research has found that if workers are allowed to "play" at work; they're more productive. Research has also found that micromanagers never develop their employees.
"The trouble with the world is that the stupid are (overly confident) and the intelligent are full of doubt." Bertrand Russell
<< <i>If I am paying someone to work, I expect them to work, not play on the computer. If they want to play online then punch out and play or go home and do it. >>
Did your employees ever get a lunch break?
Worry is the interest you pay on a debt you may not owe.
"Paper money eventually returns to its intrinsic value---zero."----Voltaire
"Everything you say should be true, but not everything true should be said."----Voltaire
<< <i>
<< <i>If I am paying someone to work, I expect them to work, not play on the computer. If they want to play online then punch out and play or go home and do it. >>
Did your employees ever get a lunch break?
Lunch break and breaks are fine, but not when you are supposed to be working. If you are wasting my time while you are supposed to be doing your job then maybe I need to replace you with someone who wants to work.
It has nothing to do with micro managing!
<< <i>
<< <i>I can understand it completely. It may be tough if you are just doing an occasional purchase but way too many people looking for a way in to gov lines. >>
Don't be silly or naive. Any DoD network worth protecting isn't even connected to the internet and the Government NIPR net that is connected is well protected. That being said, nothing that does touch the internet is 100% safe but one web site is as dangerous as the next if the person activates the various exploits out there. >>
ok! lol
<< <i>
<< <i>
<< <i>If I am paying someone to work, I expect them to work, not play on the computer. If they want to play online then punch out and play or go home and do it. >>
Did your employees ever get a lunch break?
Lunch break and breaks are fine, but not when you are supposed to be working. If you are wasting my time while you are supposed to be doing your job then maybe I need to replace you with someone who wants to work.
It has nothing to do with micro managing! >>
You have to realize it almost takes a act of congress to fire a government employee that’s been in place for some time. Rules can force them to comply even if they don’t want to. Physical barriers make them comply. As for breaks that is about six hours a day any way in some cases.
<< <i>You have to realize it almost takes a act of congress to fire a government employee that’s been in place for some time. Rules can force them to comply even if they don’t want to. Physical barriers make them comply. As for breaks that is about six hours a day any way in some cases. >>
DoD employees are the exception to the rule. All you have to do is find reason to pull their required security clearance and they are gone. Have seen it happen all in one day.
ZeroHedge makes debut at White House press corps briefing
<< <i>
<< <i>
<< <i>
<< <i>If I am paying someone to work, I expect them to work, not play on the computer. If they want to play online then punch out and play or go home and do it. >>
Did your employees ever get a lunch break?
Lunch break and breaks are fine, but not when you are supposed to be working. If you are wasting my time while you are supposed to be doing your job then maybe I need to replace you with someone who wants to work.
It has nothing to do with micro managing! >>
You have to realize it almost takes a act of congress to fire a government employee that’s been in place for some time. Rules can force them to comply even if they don’t want to. Physical barriers make them comply. As for breaks that is about six hours a day any way in some cases. >>
Why are we hiring more govt workers if the ones we have are not working 8 hours a day. No wonder our country is so far in debt,
It is about time we put a stop to this B.S..
<< <i>
<< <i>You have to realize it almost takes a act of congress to fire a government employee that’s been in place for some time. Rules can force them to comply even if they don’t want to. Physical barriers make them comply. As for breaks that is about six hours a day any way in some cases. >>
DoD employees are the exception to the rule. All you have to do is find reason to pull their required security clearance and they are gone. Have seen it happen all in one day. >>
I know that can happen but this kind of rule is usually put in place for the one in a thousand or so that need it and not all jobs take a high level security clearance.