A virtualised environment, or separate physical environment, can be used for development purposes. Though I would still hesitate to give developers full admin rights on their actual "work" PC. I.e. you have a regular user account for handling email, browsing the web etc., but then you have access to separate environment (or set of machines) that you can have admin privileges on for doing development work.
Cheers Ken -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Arjang Assadi Sent: Saturday, 19 November 2011 5:36 AM To: ozDotNet Subject: Re: [Friday OT] unstoppable force meets an immovable object, Damn good counter point. I guess the two cannot exist together, maybe having a separate physically isolated network only for developers to get the job done and then installing the result on the test machine can keep both happy. On 19 November 2011 01:06, Ken Schaefer <[email protected]> wrote: > On the other hand, you just head over to the sysadmin lists and see the > admins complaining about how much time is consumed supporting developers who > get their machines compromised or otherwise borked. Putting unauthorised > networks into an environment is a huge no-no in my book. Most developers do > not have the skills or the knowledge to secure a network, let alone know what > regulatory/audit requirements the business has. Then, if there is a > compromise and corporate IP is stolen, customer information stolen etc. due > to ingress via an unauthorized network, who is going to take the rap? >
