BlackBerry Forums Support Community               

Closed Thread
 
LinkBack Thread Tools
Old 07-17-2005, 10:16 PM   #1 (permalink)
New Member
 
Join Date: Jul 2005
Model: 8100
Carrier: cingular
Posts: 6
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default Blocking software install..

Please Login to Remove!

Is there any way to block software from being installed on the blackberry??? my boss is trying to close a deal and the only thing stopping the company is that they dont want there employees installing anything that might mess anything up... And the tech dept. doesnt want to deal with with people doing something stupid... we all know how stupid people can be.
Offline  
Old 07-18-2005, 12:21 AM   #2 (permalink)
Knows Where the Search Button Is
 
blackberrycat's Avatar
 
Join Date: Jan 2005
Model: 9700
Carrier: Rogers
Posts: 22
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

My take on employers treating the people they employ as "stupid people" must be "stupid" themselves. My wife's company bought each employee an expensive IBM notebook and locked up the installation of softwares, and if that's not enough they also set the security for the emails so high most of the employees couldn't use emails reliably. So, what do you think the workers do to the expensive notebooks. You're right! Most of them just stopped using them except for paper weights? The moral here is "let them explore and soon the creativity juice will flow". just my 2 cents worth...
__________________
"do the right thing. make your mother proud".
Offline  
Old 07-18-2005, 01:48 AM   #3 (permalink)
BlackBerry Extraordinaire
 
Soapm's Avatar
 
Join Date: Apr 2005
Location: The Mile Hi City
Model: 9780
OS: 6.0
Carrier: TMO
Posts: 2,790
Post Thanks: 3
Thanked 4 Times in 4 Posts
Default

Wow, another non-IT guy on the forum.
Offline  
Old 07-18-2005, 02:23 AM   #4 (permalink)
BlackBerry God
 
jibi's Avatar
 
Join Date: Oct 2004
Location: Jibi's Secret Place
Model: 8900
OS: 4.6.1.174
Carrier: AT&T
Posts: 11,310
Post Thanks: 0
Thanked 1 Time in 1 Post
Default

Quote:
Originally Posted by shortyroc
Is there any way to block software from being installed on the blackberry??? my boss is trying to close a deal and the only thing stopping the company is that they dont want there employees installing anything that might mess anything up... And the tech dept. doesnt want to deal with with people doing something stupid... we all know how stupid people can be.
if the users are on a BES, then software installations can be blocked - wired and over-the-air - via IT Policy. here is a screenshot of the entire IT Policy configuration options for Exchange BES:

http://www.blackberryforums.com/atta...tachmentid=183

if you want more information, you can download the Administation Guide for BES in the Product Documentation section of RIM's BlackBerry support site. it has details on each option.
__________________
In the beginning the Universe was created. This has made a lot of people very angry and is widely regarded as a bad move.

Last edited by jibi : 07-18-2005 at 02:25 AM.
Offline  
Old 07-18-2005, 03:34 AM   #5 (permalink)
CrackBerry Addict
 
Mr Pink57's Avatar
 
Join Date: Apr 2005
Location: a van down by the river
Model: 8330
Carrier: Sprint
Posts: 591
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

Wirelessly posted (your electric?: MOT-A-2B/03.02 UP.Browser/4.1.27a1 UP.Link/5.1.2.12)

Sorry but that sounds like a lazy IT department. My question is then what do they do? No offense to you man but what the previous poster stated is correct. They will become paperweights. pink
__________________
[rubbing his thumb and forefinger together]
Mr. Pink: Do you know what this is? Its the world's smallest violin playing just for the waitresses.
Offline  
Old 07-18-2005, 07:14 AM   #6 (permalink)
Grumpy Moderator
 
NJBlackBerry's Avatar
 
Join Date: Aug 2004
Location: Somewhere in the swamps of Jersey
Model: i5s
Carrier: AT&T
Posts: 27,796
Post Thanks: 33
Thanked 441 Times in 381 Posts
Default

THere are many cases where locking down BlackBerrys, like locking down desktops, makes a great deal of sense. If you have hundreds or thousands of BBs globally, you must provide a stable and secure device. It makes sense to lock them down - do you want an auditor or lawyer (just picking on them) loading up v4.0.2.8.1 of the handheld OS when that may break a corporate supplied application?

Sometimes the bigger picture - corporate and global - needs to take a front seat to individual wants.

It's not lazy - it's survival. Thousands of BBs and only a handful of BB administrators.
Offline  
Old 03-03-2006, 11:25 AM   #7 (permalink)
New Member
 
Join Date: Mar 2006
Model: 7520
Posts: 2
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

a-lot of it is gov't mandated. i work for a bank and the gov't mandates an absolute secure nw. if our nw is compromised by some stupid user downloading sw/worm/virus, then the entire company is at risk.
Offline  
Old 03-03-2006, 11:49 AM   #8 (permalink)
Talking BlackBerry Encyclopedia
 
kelvin's Avatar
 
Join Date: Apr 2005
Location: Florida
Model: 8830
Carrier: VZW
Posts: 263
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

From a non IT guy perspective - I recently discovered that our units were locked down. Of our install pool (maybe 200+), we have only a few people who have internet access. I was approved for access and approved to try out the Nextel Telenav system. After going to the website, I found I was unable to download. A quick call to the BES admin and we found how locked down we were. While I agree with NJ and jibi to a point on security, in my case (with a restricted internet access pool - and they do not have BB Desktop installed on any of the systems), I think the security goes a little too far sometimes.
__________________
Life is what you make it.
Offline  
Old 03-03-2006, 12:00 PM   #9 (permalink)
Retired BlackBerryForums.com Moderator
 
d_fisher's Avatar
 
Join Date: Oct 2005
Location: Columbus, OH
Model: 9700
OS: SID 6.7
Carrier: AT&T
Posts: 4,455
Post Thanks: 0
Thanked 2 Times in 1 Post
Default

Security policies are always a fine line between security and usablility. You can have the most secure network/devices in the world, but user productivity will be horrible. Some companies are more security oriented than others. And what most end-users dont understand, is that a lot of the security is there to protect them from themselves.
__________________
Doug

Remember, please try searching first!

Need a screenshot? ... Like JavaLoader?
Try using BBscreen .....Use JL_Cmder!
or BBScreenShooter!

[SIGPIC][/SIGPIC]
Offline  
Old 03-03-2006, 12:14 PM   #10 (permalink)
Talking BlackBerry Encyclopedia
 
Join Date: Oct 2005
Location: Toronto
Model: 8700R
Carrier: Rogers
Posts: 206
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

we use locked down user workstations and laptops. Anyone who doesn't understand why that needs to be done doesn't understand how much work IT actually does. For example, every once in a while someone (usually exec) will get a favourable preference and get a different policy than the rest (similar to IT) so then we have users that don't know how to use their computers downloading everything from toolbars, to spyware, to virus'. Granted, a lot of crap lately seems to install through backdoors but locking down PCs is far more economical from a business standpoint than paying and IT employee to go and run virus + spyware removal tools for 2 hours every month.

And as another aside, it's mean and generalizing, but a lot of employees outside of IT are quite dumb when it comes to computers. There's nothing wrong with that, but it can be dangerous from a security standpoint to allow people open desktops that can be compromised.
__________________
Ghetto stats: bberry 8130 :: desktop manager 4.2.1.8 :: handheld 4.2.2.163 :: Lotus Notes 7.02 :: BES 4.1?
Offline  
Old 03-03-2006, 12:17 PM   #11 (permalink)
BlackBerry Extraordinaire
 
KonTiki's Avatar
 
Join Date: Jun 2005
Location: NJ, USA
Model: 9650
OS: 6.0.0.524
PIN: 007
Carrier: Verizon
Posts: 2,762
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

There is a way around all the security, Buy your own BB and use it any way you feel like it. Only do not complain when you cannot get emails from the office or wireless synch, or better yet, any support from them "IT GUYS", geez, go figure.
__________________
BB Tour 9650


Running OS 6.0.0.524
Offline  
Old 03-03-2006, 12:22 PM   #12 (permalink)
Thumbs Must Hurt
 
ebgreen's Avatar
 
Join Date: Jan 2006
Model: 8700
Posts: 160
Post Thanks: 0
Thanked 0 Times in 0 Posts
Default

I don't even care about the security aspect of locking the devices down (well I do but not as much as other concerns because BBs are relatively secure out of the box). Every time that you install software on you BB you make it subtly different from someone else's. We have 2500 BB users. Supporting and troubleshooting problems in 2500 subtly different environments would be a nightmare. Another item to consider is the legality of installing the software on a corporate device in the first place. Many license agreements (if the user bothers to read them in the first place) put restrictions on the use of software in a corporate environment that are different from the requirements for an individual user. All software that is installed in our environment must be reviewed by our security team( is it safe), our desktop management team (does it play well in our environment), our legal team (is there wording in the license agreement that could result in litigation against us), and our software compliance team (have we properly purchased the correct licensing and can we prove it).

Last edited by ebgreen : 03-03-2006 at 12:26 PM. Reason: Typo
Offline  
Old 03-05-2006, 12:25 PM   #13 (permalink)
BlackBerry Mensa
 
tsac's Avatar
 
Join Date: Mar 2005
Location: Others run out when we run in
Model: Z10
OS: 10.010219
PIN: No Pin just a Tack
Carrier: at&t
Posts: 8,217
Post Thanks: 40
Thanked 570 Times in 565 Posts
Default

If everything worked without problems and no one ever fooled with the computer or BB they were given.... The companys would just buy from the vendors and never need an IT department.
complain about the users and the users will by pass IT every time. how long before the company reduces IT staff if nothing breaks.
Let em play, more work for me and you.


just a thought
__________________
If someone helps, tell them by clicking the Thanks button


9810 BES
Z10 on BES
9700 BIS
Offline  
Old 03-05-2006, 05:59 PM   #14 (permalink)
BlackBerry Extraordinaire
 
Soapm's Avatar
 
Join Date: Apr 2005
Location: The Mile Hi City
Model: 9780
OS: 6.0
Carrier: TMO
Posts: 2,790
Post Thanks: 3
Thanked 4 Times in 4 Posts
Default

Quote:
Originally Posted by earth
Granted, a lot of crap lately seems to install through backdoors but locking down PCs is far more economical from a business standpoint than paying and IT employee to go and run virus + spyware removal tools for 2 hours every month.

And as another aside, it's mean and generalizing, but a lot of employees outside of IT are quite dumb when it comes to computers. There's nothing wrong with that, but it can be dangerous from a security standpoint to allow people open desktops that can be compromised.
Contrary and I agree with d_fisher that a happy medium has to be met or IT can be viewed just as dumb. It's the easy way out for IT to lock everything down, then when their is a breach they can say it's not their fault. Just blame the employee whose trying to get the job dumb. But is it the employee's fault?

I remember a bunch of university students information (ssn's, grades etc...) was lost by a faculty member who had it on their personal laptop. When asked why the information was on a personal puter, the faculty replied they needed to analyse the information using company provided macro's, however the security on the company provided machine would not let the company provided macro run. She showed where she opened ticket after ticket to IT with no resolution. Her boss gave her a deadline so she did what she felt she had to do to get the job done.

I know how she felt, we have two internal websites, one has to have Java active to run. The other has to have java disabled. Because of our security, we have to open a ticket each time the setting needs to be changed. Imagine telling an out of service, escalating customer we'll make the changes to fix their account as soon as IT turns my java back on/off. Oh, and our IT is closed on nights and weekends so we must page the on call tech. I also had to get an exception to make a company provided application work.

I agree with IT security not accomodating personal software or external websites/applications but I feel it is obligated to make sure all company aplications will work. Rather it's from you part of IT or not.
Offline  
Closed Thread


Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On





Copyright 2004-2014 BlackBerryForums.com.
The names RIM and BlackBerry are registered Trademarks of BlackBerry Inc.