“Due to ISO 27001 restrictions”, our IT took away everyone’s local admin rights. Now we’re migrating a customer’s server to new infra, and our QA needs to test www[.]customer[.]tld on that new server and verify that it works.
Guess what our QA cannot do? That’s right, they can’t add the new server IP to their /etc/hosts file. And the IT department already went home…

🍿

@dcoderlt Hardcode the address on a local low-priv proxy (e.g. burp free)?

QA found a workaround: “I’ll run home and test this on my personal laptop, lol”. 😂

@dcoderlt went through two rounds of ISO certification in two separate companies - both allowed local admin and we still got certified. I have a feeling your IT are just bastard operators from hell and want to exercise control.

@karlpoe
I’ve had those same suspicions, yeah. Our QA isn’t even running Linux or anything weird, ffs.

@buherator
That’s worth looking into, thanks. I wonder how IT will react when an inventory scan picks up unfamiliar “hacker tools” like that, heh.

@dcoderlt There are probably less suspicious alternatives, but this is the one I know that certainly can do this.