You don't need to be an 'investor' to invest in Singletrack: 6 days left: 95% of target - Find out more
My last day at work today and on Tuesday I hand my IT kit back, I’ve had it 2 yrs or so so did use it a bit for home stuff too
What do I need to make sure I delete / clear?
It Microsoft edge browser so I’ve gone in the privacy bit and deleted history , passwords etc etc. is that sufficient?
On the laptop itself I’ve deleted all downloads, but are there any caches any where I should delete too?
Ta
Nothing, they've been able to see anything and everything anyway since the day they gave it to you.
They won't even log onto it, it'll just get reimaged/wiped.
Everything including emails you dont want your boss to see when they come up with a reason for IT to let them access it
Everything including emails you dont want your boss to see when they come up with a reason for IT to let them access i
its all on their server anyway.
I DBANed mine.
Have a large spoonful of "it depends."
When I was in IT, there was a Leaver process. Step 1 was to disable the account so that they couldn't log in from elsewhere after they've left, in which case they're not going to be logging into your profile anyway.
If there was a suspicion that there may be work on the laptop - there shouldn't be, it should all be on SharePoint, file servers etc - then I could reset their password and log in as them. This is a pain the arse, I'd ask their former manager what they need and invariably get the answer "everything." I'd look on their desktop and in their Documents folder, copying both to a network share, then say that's all there is. Half the time the bulk of their profile would be an iTunes library or 200 photos from the Sales skiing trip jolly seven years ago. Sometimes you'd get a particularly paranoid manager insisting that there "might" be something on there, in which case I'd pull the drive, label it and stick it in a drawer with the others never to be seen again.
What I didn't do, because it's time-consuming enough as it is, was try to have a nosey around their Facebook account or go sifting through the browser cache looking for their hentai collection. I want it flattened, reimaged and ready for reissue as soon as possible. But even if I did then, well, so what, you can't discipline someone once they've left. The worst that could happen unless you've done something actually illegal which we'd be duty-bound to report is that some IT bod will have a quiet smirk in discovering that you were into tentacle p0rn.
But, see the first sentence. This is my experience of how IT departments typically work, but it is anecdotal. Your IT department may be different, I don't know what security settings are implemented on your laptop and I have no way of knowing what your "personal use" may entail.
Hooker and coke dealer contacts.
its all on their server anyway.
Also, this.
Any Domain Admin with half a clue will have anything important automatically syncing anyway. (Ours didn't because that was how I inherited it and I wasn't in the role long enough to set it all up properly, I was basically putting fires out.) Your email will still be on a server even if you go on a mad deletion spree. Assuming you're either in the office or using a fixed tunnel VPN, your web traffic is likely logged by some form of proxy or firewall.
The moral of this story is, don't use work laptops for personal use.
Nothing, they’ve been able to see anything and everything anyway since the day they gave it to you.
They won’t even log onto it, it’ll just get reimaged/wiped.
This, although they shouldn't actually dig into your laptop without a valid business reason and should do only the minimum to achieve the requirement. "FunkyDunc had the only copy of that file on his laptop" doesn't mean they can search your browser cache.
I wouldn't worry assuming there is nothing you feel you should worry about.
On the laptop itself I’ve deleted all downloads
and emptied the recycle bin?
Leave the porn collection, IT admins have needs too, especially busty ladies in star trek uniforms, they are nerds after all.
Hooker and coke dealer contacts.
You joke, but a mate in another company had exactly that in a returned work phone.
[EDIT: found the picture. I've redacted the phone number for fairly obvious reasons.]
I worked for a company once that changed my Outlook password so they could log in and check my emails and I couldn't send any for a week. Fun times! 🙂
format c: /q /u
You'd hope that most users don't have access to CMD
You’d hope that most users don’t have access to CMD
I just tried it - and I do! 😀 Can't plug any USB devices in though, that all stopped recently. PITA to be honest.
Would CMD launched without being elevated let you format?
IME saving work stuff is something that your manager needs to sort with you before you leave
IT won't risk breaching DP just because a manager thinks that there's something of value on there. YMMV, but mine was being formatted while I waited for someone else to update the issue/returns database
I removed the crypto keys from the partition, erased it, then did a factory reset from the recovery partition (Mac). Good luck them getting back off that. The stuff that they actually needed was either in Git or on the team storage.
My phone got initialised and handed back as a fresh new device once I had removed it from iCloud.
The last place I used Windows at had the disk repeatedly overwritten with DBAN before I gave it back. It's not that I did not trust the people collecting the hardware, but I did not trust the people that knew what I did in my role. Killing the data and pissing on the ashes protects both them and me.
but I did not trust the people that knew what I did in my role
Shirley with “Top Secret or better” clearance or whatever massively important stuff you did , the organisation would know because they gave you the job and would take their own steps to secure your their dataz. No?
Killing the data and pissing on the ashes protects both them and me.
From what? Assimilation by the Borg? Chinese assassins?
format c: /q /u
... won't work. You cannot format the live system partition from within itself.
You’d hope that most users don’t have access to CMD
I had this helping a friend with her work laptop.
cmd
"This command has been restricted by your System Administrator."
Hm, OK. powershell
PS C:\>
PowerShell is actually quite hard to restrict because as soon as you do a whole load of Windows processes stop working. I built a W10 environment for a school and eventually managed it with AppLocker and some very funky folder permissions via GPO but it took a lot of effort.
Shirley with “Top Secret or better” clearance or whatever massively important stuff you did , the organisation would know because they gave you the job and would take their own steps to secure your their dataz. No?
The bigger issue was that it was a US company, not anything 'secret' or spy-stuff. Honestly you can't stust a third party company that is driven by shareholder value.
From what? Assimilation by the Borg? Chinese assassins?
You know about them???? Dammit! Abort! Go to plan C!
no where I have worked in 27 years gave a monkey's.
Dunno what you mean. Nudge nudge, wink wink.
A friend of mine got caught out on his sat nav and a certain car park.
The only thing I did was photo certain emails and certificates that where held by the company.
They know everything anyway.
I do factory reset mobiles when I send them back even if they tell me not too.
The moral of this story is, don’t use work laptops for personal use.
Personal use being looking for holidays, checking BBC sport etc all good. Looking at boobs etc, maybe best avoided.
Mmmm. Boobies.
Hopefully all down in-between the keys etc.
[img] 
[/img]
Probably a complete de-bugging with Dettol or bleach in a spray bottle! If it’s like some keyboards I’ve seen; I’d want a box of nitrile gloves and a mask before I touched anything like those were!
[img] https://emoticons.datahamster.com/vomit2.gi f" target="_blank">
https://emoticons.datahamster.com/vomit2.gi f"/> [/img]
Normally when we set up deprovisioning processes for customers we’re asked to provide read only access to the leaver’s emails, documents (whether on a file server or saved in OneDrive), work in progress in any target system and that’s about it.
Nothing you do on the laptop will impact how this data is handed over. What I would do is delete your browser profile, or at least all your saved passwords, clear out anything that you’ve saved locally (or move it to your personal drive/onedrive if you want to share it), empty the recycle bin and hand it all over.
Alternatively, you could do what I did when I left dell, having realised they were a bunch of Trumpist asshats.
edit: taking the battery out and microwaving the laptop on full power for 5 seconds is equally effective and generally leaves no trace.
