Sometimes I really wonder !!!
With all the best intentions in the world I did a review of some of our non production environments, what I realised was that we had not changed the default password on these environments for a number of years; essentially all user passwords are set to a default when cleansing the production environments. OK so far so good – I let everyone know and refreshed the environments.
Now let’s say that the original passwords were not exactly very secure – you’d maybe find them in a hackers dictionary.
What was somewhat amusing was the fact the testing team didn’t seem to realise we’d done this for some of the test environments for nearly two weeks .. hmmm!
Then the ultimate, to make life easier it seems some users decided to reset their passwords back to the ones that had been used for the past 4 years .. doh !
Then the final push which made me post this – walking out of the offices ( which are shared with other companies ) a caught the conversation between tow folks discussing access to their computer system “ It’s Admin Admin, to get in “ aaarrgghhhh!
I'd like to quote from a book I was given for fathers day “Laugh on the loo” - “ Never underestimate the power of a bunch of stupid people!”