One chestnut from my history in lottery game development:
While our security staff was incredibly tight and did a generally good job, oftentimes levels of paranoia were off the charts.
Once they went around hot gluing shut all of the “unnecessary” USB ports in our PCs under the premise of mitigating data theft via thumb drive, while ignoring that we were all Internet-connected and VPNs are a thing, also that every machine had a RW optical drive.
I am not allowed to change my wallpaper.
This came from your security team? I usually see it from HR / management selling it as a branding issue or “professional” thing.
Even worse here - we cant change the screensaver or screen lockout timeout settings!
I have a workaround by running a little looping script that keep the screen active. Its not that I particularly object to the screensaver, but once it activates I have to Ctrl Alt Delete 3-4 times and enter my password to get my desktop open again. Also it is an active screensaver that sometimes mucks up my desktop layout (I have a multiple monitor setup)
Believe it or not, this one actually makes sense.
There have been some epic JPG exploits and even recently (2020 I think) a huge vulnerability in Windows itself relating to wallpaper/lock screen images.
deleted by creator
deleted by creator