Keylogging as a work security measure yes or no?

Surfer · 4 Jun 2012 at 15:11

Do you think this is a viable means of monitoring employees? ie keylogger on all the work pcs

Note: I'm not asking if its legal or not (it is). Just asking what you think the pros and cons would be.

Im not sure why its needed if your company already monitors all emails, and logs website access (and blocks websites as well) and can also access any documents personal or otherwise on user drives.

Why is it needed?

Secondly do you need to advise your employees *beforehand* that the software is being used to monitor them OR do you just need to give a generic response along the lines of "employee work is monitored" etc

thanks

Addicted · 4 Jun 2012 at 15:13

really?

Surfer · 4 Jun 2012 at 15:14

yep. its a serious question.

Morgoth · 4 Jun 2012 at 15:15

Don't do this.

Housey · 4 Jun 2012 at 15:16

Ridiculous idea.

RomanNose · 4 Jun 2012 at 15:16

No, the employees will just leave you.

Surfer · 4 Jun 2012 at 15:19

i worded the question deliberately btw - (im not the one doing this)

edit: whoops my mistake

the program its part of sophos haha oh dear... stupid email ive sent to IT support then lol....guess i'm just paranoid

touch · 4 Jun 2012 at 15:29

How long is it going to take you to sit and read through all of the logs for all of your employees?
What sort of work do your employees do? If it's something like graphic design or CAD or something that can be done graphically, they might not do a lot of typing and you might be ok. But if they spend 7-8 hours a day typing, then you'll have masses of stuff to read through for each employee.

Just stick with the normal blocking of sites and restricted admin rights on their PCs.

Sin_Chase · 4 Jun 2012 at 15:31

Since when did Sophos have keylogging as part of it's security suite. Why are you under the impression it does?

Do not need keylogging as email/IM/HTTP(S)/File Data etc etc should be monitored anyway. Why would you be paranoid about doing work at work?

Prepare to be absolutely ridiculed by IT if you sent an email about this though. A user that is worse than a clueless user is a user who thinks they know about IT.

Surfer · 4 Jun 2012 at 15:33

iMonitor is both a employee monitoring package and a part of sophos - hence the confusion

generally because accessing email, bank accounts etc logins would be captured no?

touch · 4 Jun 2012 at 15:34

Oh, so you ARE the employee?

I hope you didnt make this post from your work PC? P45 in the post?

Sin_Chase · 4 Jun 2012 at 15:36

imonitor is a Sophus Update component and NOTHING to do with the imonitor software suite.

See my previous comment about thinking.

Surfer · 4 Jun 2012 at 15:38

yeah i didn't know at the time - first google was iMonitor software so i naturally think..

whoops

Sin_Chase · 4 Jun 2012 at 15:40

Lets hope your IT guys are forgiving

I know I would not be

Surfer · 4 Jun 2012 at 15:42

sending grovelling apologetic email now

Aod · 4 Jun 2012 at 16:01

I'd just like to pipe in and say that it's completely legal, if the employer has a "no expectation of privacy" clause in the IT-usage part of your contract or company policy.

dowie · 4 Jun 2012 at 16:36

its a bit dubious - I don't see that many benefits to the employer, most of the benefits would be legally and ethically dubious - such as gmail and facebook login info etc...

company e-mails, office communicator, browsing history, documents stored on company systems can already be monitored without the need for key logging. Websites can be restricted, USB ports can be removed...

given that key logging would consume resources and generate data that needs to be stored, maintained and presumably searched for whatever purpose from time to time I'd fail to see what benefits could be derived from doing so that would outweigh the costs - not only the direct costs but also the indirect ones such as employees finding out about it and it contributing negatively towards the companies relationship with them...

Energize · 4 Jun 2012 at 16:42

I don't really see what use it would be unless you were working at MI6 or something.

Sin_Chase · 4 Jun 2012 at 16:45

dowie said:
its a bit dubious - I don't see that many benefits to the employer, most of the benefits would be legally and ethically dubious - such as gmail and facebook login info etc...

There are no ethical or legal implications.

Employee signs contract that will also, presumably, mandate compliance with the companies IT usage policies.

You have no human right to access personal resources on corporate IT systems and any such access can be entirely monitored. Many HTTP proxies can content inspect even HTTPS connections and log the information contained within.

RomanNose · 4 Jun 2012 at 16:55

Sin_Chase said:
There are no ethical or legal implications.

Employee signs contract that will also, presumably, mandate compliance with the companies IT usage policies.

You have no human right to access personal resources on corporate IT systems and any such access can be entirely monitored. Many HTTP proxies can content inspect even HTTPS connections and log the information contained within.

Incorrect.
SSL certificates would have to be obtained to perform a MITM on https, otherwise the user would know that the certificates is fake.
Same with SSH, the RSA key would change if a MITM attack is being performed. The only thing you can gather is who are you communicating to.