9 Replies Latest reply on May 4, 2011 11:15 AM by Dataspike

    Landesk remote: possible to spy on users without their knowledge?

    Rookie

      Hello Community,

       

      I have a few questions which you can hopefully answer easily. Googleing for an answer didnt give me any useful results.

      I work at a company where Landesk is being used. Sometimes, for example when I need assistance from the IT Helpdesk they access my computer via Landesk remote access. I get a popup asking me if i want to allow access and when I click Yes thesy can use my computer remotly.

      This is all ok, but I have the feeling that sometimes I am being accessed remotly whithout my allowance/interaction and someone is spying on me

      I hope that doesnt sound to paranoid!

       

      1) is it possible to access a computer with Landesk remote, while a local user is logged on and watch the screen without that user knowing it?

       

      2) If yes, how can this be prevented by the user and how can the user notice when this remote spying happens? Can I monitor some ports or processes?

       

      I have full local admin rights on my machine btw. and we run Win7.

       

      Thanks for any useful answers.

        • 1. Re: Landesk remote: possible to spy on users without their knowledge?
          MarXtar ITSMMVPGroup

          It can be done but if your standard settings are to require permission then someone would need to specifically modify your clinet configuration to make it possible.

           

          When an RC session starts you will generally noticie a difference in the display such as a flicker/refresh of icons. Not the best indicator but it would normally be noticable.

           

          You would also notice the ISSUSER process utilisation get higher internittently during a remote control whereas normally it is at 0%.

           

          This is obviously while it is happening. You can see past activity by looking at your windows application event log as there will be landesk remote control entries in there telling you when and who remote controlled you.

          • 2. Re: Landesk remote: possible to spy on users without their knowledge?
            LANDeskWizrd SSMMVPGroup

            Besides what MarXtar stated, you may also have indicators set in your agent for Remote Control. If you do then, you may want to get rid of those or the user may notice the indicator depending on which one is being used.

            • 3. Re: Landesk remote: possible to spy on users without their knowledge?
              Expert

              There are a variety of ways to ghost(remote view without notification) a workstation without user solicitation.  This can be performed even without LANDesk.  Your best course of action would be to contact your IT Security group and ask them if this is being allowed and/or if they are even allowed to divulge this information.  Possibly mention the degradation in performance...

               

              Good luck

              • 4. Re: Landesk remote: possible to spy on users without their knowledge?
                Specialist

                I'm going to toss this out there, because it should be said, and I am sure you know this, but in case it pops up on Google or something.

                 

                Being an employee and an LANDesk Admin, I understand and hope that every employee regardless of title, function, etc, understands that the machine we are using between 8 to 5 is NOT my machine.  It is owned by the company.  I, like every other person in my comapny signed an employee agreement stating that at any time ANY and ALL electronic activity CAN AND WILL BE MONITORED, with or without my knowledge.  It's a fact of life these days.

                 

                I have several problem users who think the computer they use is their personal device, just because it's in their cube, or at their desk, and like to do as they please (pirated software, games, etc).  This causes untold amout of issues, both for the IT Department and the company.

                 

                Now, I would assume since your company has shelled out the money for LANDesk, they are pretty well put together and have expressed these conditions to you and all other employees.  If they haven't, well oops on their part, but again it really doesn't matter.

                 

                A word to the wise would be, do not attempt to circumvent, disable or otherwise trick your IT Department.  They will find out, directly or indirectly, and they can and will get you fired for violating company policy.

                 

                All in all, if you are working and earning your paycheck, you have nothing to worry about.

                 

                Good luck. 

                • 5. Re: Landesk remote: possible to spy on users without their knowledge?
                  MarXtar ITSMMVPGroup

                  Dataspike,

                   

                  What you describe may be true for you and is pretty common in the US but it is not a fact of life everywhere. The reason LANDesk has these settings is so that it can handle different corporate policies but also different legal requirements. Also, a LANDesk admin (or any other remote controller) does not therefore have an automatic right to monitor somebody's PC not only for personal privacy reasons but because of ethics as well as other legal issues such as confidentiality of information that may be presented on that screen.

                   

                  The original post stated that under normal circumstances permission is required but the suspicion is that this has been changed for a single user. Whether legally this is allowed in the member's country or not, it appears to be against the standard policy (if indeed it is happening).

                  • 6. Re: Landesk remote: possible to spy on users without their knowledge?
                    Specialist

                    Correct... the tools are only as good as the person (reason) using them.

                     

                    I didn't really mean for my statement to serve as a blanket statement for everyone, everywhere, more just a reminder or a thought provoking statement(s).

                     

                    In fact we don't even install LANDesk in our Germany offices because of concerns/laws regarding privacy, so it's not always the case.

                    • 7. Re: Landesk remote: possible to spy on users without their knowledge?
                      MarXtar ITSMMVPGroup

                      Oh the joys of workers' councils.

                      • 8. Re: Landesk remote: possible to spy on users without their knowledge?
                        ProServices

                        Hi,

                         

                        FWIW - Many of LANDesk's largest customers are actually in Germany

                         

                        Generally you only need to be careful about two areas:

                         

                        1) How you configure Remote Control, and who has access to that function.

                        2) SLM - you may find that you can not collect product usage data, or that you can only do so during a clearly defined time period

                         

                        Im not aware of any privacy issues that relate to hardware inventory, OSD, SWD or Power Management for example. You may need to involve the HR department and the Workers Council, but that should not stop you making the cost savings that you would gain by deploying LDMS. Its just a little more political.

                         

                        Regards

                        Ian

                        • 9. Re: Landesk remote: possible to spy on users without their knowledge?
                          Specialist

                          Ian wrote:


                          ...

                           

                          2) SLM - you may find that you can not collect product usage data, or that you can only do so during a clearly defined time period

                           

                          Good to know.