7/1/2026 at 8:01:29 AM
I.. I cannot restart my computer. Why? I work at a smallish agency as a developer. A few years ago we were acquired by a massive global corporation as part of the typical vertical integration strategy these big boys usually run with. Anyway, that’s all dandy as we otherwise would have perished during Covid. But this parent company, as many others, have some rather stringent security policies when it comes to IT. They use ZScaler for ”securing” traffic to- and from its employees’ computers. And wow has this been a boiled frog. At first it was fine, not that big of a deal as not much of our day-to-day tooling was blocked. But slowly and steadily the frog got cooked. Now the frog is basically dead. Like.. dead dead. For example their current configuration of the ZScaler proxy strips ALPN causing all traffic to fallback to HTTP/1.1 which has - well, quite some consequences for web development. There are a gazillion more things - but to really get to the point, no I haven’t restarted my computer in the last euhmm weeks. We found a way to disable ZScaler temporarily to access the ”real” internet, but this loophole has been plugged in their latest rollout. And if I restart my computer the new version will take effect - which will literally make it impossible for me to work. And yes, we have for a long time been trying to explain/escalate this but the red tape and bureaucracy of a massive org like this (where a vast majority doesn’t even know we exist) makes it feel very Sisyphus-esque.by throw-nodox-23
7/1/2026 at 8:18:23 AM
This is your bosses problem. Apply security patches and reboot. Find a book to read.by one33seven
7/1/2026 at 8:31:24 AM
Put like this, could sound like malicious compliance. But, if you disable whatever security product your company mandates on your company laptop and then you somehow get a malware, they will point the finger at you. Saying "I wouldn't have been able to work otherwise" will probably not work. Reboot your company laptop, let it install any patches it likes to, then complain to your manager. It is their resposibility to figure this out. If you work around this, you risk getting in trouble.by GTP
7/1/2026 at 9:22:18 AM
> It is their resposibility to figure this out.You're responsible for your own career.
During the next calibration call, your manager can't be like, "well he spent 8 hours each week resetting up his machine after a reboot, so we need to give him credit for that too."
Your job is to deliver impact, not fight system configurations.
by itake
7/1/2026 at 9:28:17 AM
Indeed. The configuration isn't your responsibility, but it becomes so if you try to circumvent it and something goes wrong. What would the manager say during the calibration call if a ransomware infection started from this employee's laptop, after they disabled the company-mandated security software? They probably wouldn't even care to figure it out if the security product in question would've been able to stop that specific ransomware.by GTP
7/1/2026 at 11:28:53 AM
If your boss is not able to back you up for something like this, it's time to change job.by darkstar_16
7/1/2026 at 1:37:51 PM
During the compensation calibration meetings, there is no boss in the world that would be able to argue anything to your benefitby awakeasleep
7/1/2026 at 5:02:47 PM
If you think so you've only ever worked in a trash org. If my productivity was hurt by things outside my control I'd expect (and have had) managers to fight for me.by square_usual
7/1/2026 at 2:34:15 PM
This has to be the most depressing comment I've read this week. I assure you, not all places are like this. Especially mid-smalll, but even some pockets inside large-mega.by zamadatix
7/1/2026 at 5:45:29 PM
What company will promote you for rebooting your machine?Maybe you’re not gonna get fired, but I can’t imagine someone hitting staff level because they spent a third of their week recovering from a weekly reboot
by itake
7/1/2026 at 8:57:16 PM
I can't believe the level of pushback we're getting on this point. Most of these people have probably never been in those meetings.Person A: Not able to accomplish anything because security blocked essential... Person B: Shipped product F, look at this impact to our KPI. Saved costs by retiring service C. Mentored little jimothy.
Who get the base salary bump and bonus allocation in that scenario
by awakeasleep
7/1/2026 at 5:44:23 PM
There are two critical conversations during this meetings:Do we promote this guy? Do we fire this guy?
It doesn’t matter what the excuse is or the size of the company, if you don’t have impact for the next level you’re not promoted. Put simply, you’re not getting promoted rebooting your machine.
Maybe your boss can defend you from a conversation, especially if the problem is systematic (impacting the whole team).
by itake
7/1/2026 at 1:48:28 PM
Ideally you’d just leave a shithole company like this (of course these days it might be exactly feasible..)I suppose filling out a ticker or two every day and constantly bothering IT non-stop might be rhetorical best option (assumings one has enough energy for that)
by wqaatwt
7/1/2026 at 3:56:54 PM
If only it took as long to close a ticket as to open one.by mr_toad
7/1/2026 at 8:38:53 AM
Ah yes of this we are well aware. Don’t tell anyone!by throw-nodox-23
7/1/2026 at 2:02:11 PM
yup, that's exactly what i do.if anything is making me less productive or just plain stopping my job, i raise an IT ticket, tell my manager and go for a walk.
by fernandotakai
7/1/2026 at 2:43:58 PM
This is the right attitude, but others often refuse to press the issue. The only way this crap gets fixed is for it to cost the company enough lost productivity (and money) to make it worth fixing. If the intent is to "be secure", fix it. And fix it correctly. Don't have every developer on the same project asking for access to AWS and opening their own tickets... It's insane.by icedchai
7/1/2026 at 12:21:40 PM
Wish it was that easy. Unfortunately for many of us, our job is more about navigating roadblocks like ZScaler, negotiating with security people, and figuring out work-arounds, rather than focusing on developing software. Our bosses tell us to figure it out.by francisofascii
7/1/2026 at 8:38:12 AM
Yeah.. that’s a bit where the shoe pinches.We could just grab a book and lean back - but being 0.017% (!) of the total global workforce (we’re ~70) we’d easily be seen as insignificant if we continuously don’t meet our targets. So we’re a bit stuck between a rock and a hard place. Do we keep rolling our rock up the hill and keep going, or risk it rolling over us and squooshing us into oblivion? At this point, I’m really quite ’meh’ about it all. I guess my learning is to be very careful during acquisitions. But heck, the founders got rich and that’s their prerogative no matter my own personal views. And don’t get me wrong, I enjoy my job a lot and I still get paid - and fighting Big Brother and rolling this rock up the hill has almost become a sport (and running joke) here. Yesterday we noticed we were blocked from browsing an independent photographers portfolio while being prompted to use ’internal photography tooling’.
by throw-nodox-23
7/1/2026 at 9:23:28 AM
I think you have Stockholm syndrome. It's not worth having any loyalty to such an organization. Since they don't want you to work, just spend your working hours looking for a new job.by zarzavat
7/1/2026 at 10:58:08 AM
> I enjoy my job a lotI'll be real with you, I wouldn't make a throwaway account to talk about a bad company policy if I enjoyed my job.
I'd recommend looking for another, the job market is nowhere near as bad as people claim (at least for non-junior positions).
by drbscl
7/1/2026 at 3:06:30 PM
I hear you! And it’s not like I haven’t considered it - thing is I really do enjoy the work I get to do in this agency (which is this tiny pixel in the tapestry of Big Org CO). It’s varied, impactful, and I can morally stand behind a large portion of the projects I’m on.It’s just that.. we’re owned by Big Brother, they have little involvement in what we do other than this compliance hullabaloo.
But we’re all trying to David the sh*t out of our Goliath - and to some extent we’ve actually been successful.
But really I just wanted to share a story as to why I haven’t restarted my laptop in ages! Happy it lead to some fun conversations though.
by throw-nodox-23
7/1/2026 at 12:29:51 PM
The market being bad is exactly the reason to start looking for a new job now. It's probably going to be a long process, so you shouldn't wait to start it before being fired / put on a PIP / etc.by throw-the-towel
7/1/2026 at 9:06:12 AM
I have the opposite problem; while zscaler isn't yet forced on us, updates and reboots are. At least system restarts for major updates are announced like a week in advance so there is still some leeway. But it's annoying that my React Native development environment needs to basically be reinstalled every two weeks. (this is all on MacOS btw)by Cthulhu_
7/1/2026 at 10:12:48 AM
> At least system restarts for major updates are announced like a week in advance so there is still some leeway.Luxury.
My work machine used to do this, but I've had the current laptop reboot without warning while I'm actively using it (not actively giving input, but reading what is on-screen at the time).
by dspillett
7/1/2026 at 12:23:00 PM
Your problem is not to circumvent security policies. Doing that places you at fault for whatever may happen. Reboot and comply fully with all security mandates. When productivity fails to meet expectations, that is a problem for your superiors to resolve, not you. Know your place and accept it.by Suzuran
7/1/2026 at 1:40:16 PM
I know several developers that have been plagued by ZScaler and similar security tools. It takes weeks to get these issues resolved. Absolutely insane. Inevitably they wind up doing work from their personal laptops...One guy I was working with was working on an AWS project. He couldn't access part of the AWS console because it was prohibited by ZScaler... Open a ticket, wait...
by icedchai
7/1/2026 at 2:09:01 PM
Please do not do work from your personal laptop. If the company doesn't want to troubleshoot their own tool which is preventing you from working, you shouldn't continue adding value until you're enabled again.by butlike
7/1/2026 at 2:26:43 PM
I agree with you, but other developers will tell me they can't meet a deadline if they do that, and have no choice. In today's shaky job market, they don't want to rock the boat too much, which I can understand.by icedchai
7/1/2026 at 9:29:06 AM
Why http1 wouldn't work for webdev?by GoblinSlayer
7/1/2026 at 3:09:00 PM
Little annoyances mostly. Lighthouse reports giving worse scores, Sanity’s live editing starts acting very weird/not at all.by throw-nodox-23
7/1/2026 at 10:55:05 AM
but don't you have a separate personal computer that you own, and this cursed computer would be property of the company?Otherwise if they are asking you to install this in your personal computer, I just wouldn't and I would submit a request to procurement for a corporate laptop.
by TZubiri
7/1/2026 at 3:11:24 PM
Yeah totally - but the issue is doing work (which is a ’rare’ type of work in this massive org, so security policies are not catered for it) on my work laptop (:by throw-nodox-23