On 17 Jul 98, at 18:00, Paul H. Christidis wrote:

>   I'm sure that there will be cases when one forgets to 'lockup' or
> thinks he will not be away long enough to warrant using the 'lockup'
> feature, but I feel adherence to a simple 'manual' procedure would
> substantially reduce the risk involved with 'unattended terminals'.

We force all of our users, including the operators, into a
QUICK based menu system which has a 300 second timeout
based on terminal activity.  Once you time out you are logged
out.  I get about four to five complaints a year regarding this
feature and I always point out the same thing to the complainer:
 "Under written company policy you, and you alone, are
responsible for anything that happens on the company
computer by anyone using your logon ID. Are you prepared to
lose your job for the convenience gained from eliminating this
security feature?:"

Nobody has ever answered yes.  Not that it would make any
difference to me.

Regards,
Jim
---
James B. Byrne                Harte & Lyne Limited
vox: +1 905 561 1241          9 Brockley Drive
fax: +1 905 561 0757          Hamilton, Ontario
mailto:[log in to unmask]  Canada L8E 3C3