Just a reminder, especially in this wild time we live in. DO NOT INSTALL WORK MDM ON YOUR PERSONAL DEVICE.
If your work requires Microsoft Intune or similar MDM, to get email/teams/slack. don't accept it. It opens your device up for them to access private data and disable/delete your phone (even if they say they wont, they can)
https://blog.cdemi.io/never-accept-an-mdm-policy-on-your-personal-phone/
Conversation
Notices
-
Embed this notice
Mike Elston (notsle@kzoo.to)'s status on Thursday, 06-Feb-2025 15:49:58 JST 
Mike Elston
- Rich Felker repeated this.
-
Embed this notice
Nefarious Aryq (nefariousaryq@hoosier.social)'s status on Friday, 07-Feb-2025 12:29:28 JST 
Nefarious Aryq
@notsle Company I worked for years ago decided to require this for any device that wanted access to Outlook. I put my foot down and said nope, *my* device: either gimme a phone or I just won’t have access to my work email nights and weekends. They stood firm; and it was nice to delete Outlook (I wasn’t there much longer, the writing was on the wall for what they were becoming and I left).
-
Embed this notice
Rich Felker (dalias@hachyderm.io)'s status on Friday, 07-Feb-2025 13:55:18 JST 
Rich Felker
@neilk @notsle @graydon MDM is appropriate for company devices. What's grossly inappropriate is storing data about other people whose money you're managing on employees' personal devices and relying on ability to remote wipe them to "protect" that, rather than never putting the data there to begin with.
-
Embed this notice
Neil Kandalgaonkar (neilk@xoxo.zone)'s status on Friday, 07-Feb-2025 13:55:20 JST 
Neil Kandalgaonkar
@notsle @graydon I actually went through this with the IT at our current company when I enrolled. MDM is quite appropriate for us, we manage people's money. I also have some experience in iOS device management.
As far as I know, these concerns are wildly exaggerated for iOS. It wasn't true in 2018 when this was written (read further down to the comments) and it's far less true now.
IME users are about 1000x more likely to be compromised by some free-to-play game or social network
-
Embed this notice
Rich Felker (dalias@hachyderm.io)'s status on Friday, 07-Feb-2025 13:57:15 JST
Rich Felker
@neilk @notsle @graydon No, it's from Apple kissing ass to governments *and other corporations* without even being leaned on.
Up until now it was mainly the other corporations part, not gov, that they did that for in the US.
But in any case you're right, they're not trustworthy.
-
Embed this notice
Neil Kandalgaonkar (neilk@xoxo.zone)'s status on Friday, 07-Feb-2025 13:57:17 JST
Neil Kandalgaonkar
Corporate BYOD MDM is mostly-safe because Apple is mostly-safe
But the nature of iOS is that everything is remotely managed. Apple has iron control over hundreds of millions of devices, and what apps they are allowed to use. Effectively they can do anything to the phones, even reverse some privacy features with OS upgrades
The actual vulnerability here is not from your job, it's from the US gov't leaning on Apple
-
Embed this notice
Miakoda (hellomiakoda@pdx.social)'s status on Saturday, 08-Feb-2025 01:58:43 JST 
Miakoda
@notsle
A company I used to work for had a clause in which if they thought my machine contained company data when I left, they could confiscate my computer -
Embed this notice
/* Ollie 🏳️🌈 */ (ollieverse@mastodon.social)'s status on Saturday, 08-Feb-2025 02:59:54 JST 
/* Ollie 🏳️🌈 */
@hellomiakoda @notsle How would they legally enforce that?
-
Embed this notice
Miakoda (hellomiakoda@pdx.social)'s status on Saturday, 08-Feb-2025 02:59:54 JST
Miakoda
I have no idea. I just knew they weren't taking my PC, no matter what it took for me to fight them off
All GNU social JP content and data are available under the