More Developer Madness

What is it with developer that they feel the need to do completely stupid things without a though for the consequences, just as long as it works? Are they just lazy perhaps?

I have come across a couple of instances in the last couple of days where developers have created shares on servers and left them wide open to abuse by anyone being a bit nosey on the network.
When I say wide open, I mean barn door wide open. Yes they put the Everyone group in with full control on both the share and NTFS permissions. Yes that’s right, I couldn’t believe it either; they even went to the extent of removing all the other users from the NTFS permissions. Complete and utter thoughtlessness and madness. 

I quickly created some groups added the users I was aware of that need access and added that in to the shares and NTFS permissions after I reset it all to defaults. This not surprisingly caused some problems as users that were expecting access no longer could and the support/developer people got the right hump, not surprisingly they backed down when it was explained how stupid they had been and what the consequences of their actions could have been.

Now most of the above problems are done to developers accessing live servers and making changes, no formalised change procedure and have developers that are external to the company with no internal skill set to support the systems that are critical to company’s wellbeing.

This situation has come about in company that has always used IT from the very early days, but it was always on a proprietary system based on VMS. That system was tweaked in house and those people that supported it were all well paid for their services. That system was and still is maintained in sensible way with change management. However, as PCs and Windows servers came in to the business there was no internal development skill set, Support that came in was a mixed bag of skill levels, managers often new just enough to blag their way in to th job but not enough to do the job properly and after 10 years of going from a file and an e-mail server to around 120 servers with little in the way of board level confidence and whole bunch of political nonsense we have an IT department that is only just about clawing its way in to the realms of a sensible managed and structured entity.

Though the reliance on contractors and external developers is a cause for concern, it would seem that those up the food chain are scared to employ people but will happily shell out huge sums for contractors as it comes under a different budget. Life span of contractor at my company runs to around 5-10 years it would seem, slightly longer than many of the permanent IT staff which is weird whichever way you look at it. But most weird when you realise that non-permanent staff are more loyal than permanent staff.

We have probably reached our size as far as servers go, well on the production side of things, Dev seems to growing more as does QA (Quality Assurance) or UAT (User Acceptance Testing) servers which I always thought were the same but found out today that they are not, it goes Dev -> QA -> UAT -> Production. This means that we should need about 300 servers in all and our non-production servers will outnumber our production servers 2 or 3 to 1 even though we have no in house developers.
Here’s a though, shouldn’t external developers develop on their own servers then move that code on to our QA,  UAT or pre-production servers then on to our live servers?

Or to put that better it should be the developed on their server, then they give the code to us with update instructions to apply to pre-production which we test against copies of our data and then move in to our production environment once we understand what the changes are and how they affect things. Thus we build up a fundamental knowledge of how things work and how to fix things when they are broke rather than ring up an external support consultant when he is on the beach in Barbados to rerun a failed SQL data import as none of the Application Support team knows how to do it, yes I agree perhaps they should be renamed Application Receptionists as all the seem to do is forward calls to the developers.

We have even shipped our production data to developers on a hard disk to test against. Am I the only one who sees this as something wrong?

I battle daily for order, structure, clarity and common sense in IT, the above examples help to strengthen my case and it is becoming more accepted further up the food chain, though I suspect it will be several years and few more bumps before we reach nirvana.

Comments

Popular posts from this blog

Scripting DNS entries

Enterprise Vault - Failed Exchange Task

Star Wars: Jedi Fallen Order - a review by an over 50s gamer