I recently posted a list of my 12 Ways to Be A Security Idiot. This list was inspired by an older column (OK, rant) of mine where I bemoaned the stupid things that people do that cause most of the security problems that companies have to deal with.
When I wrote that old column I got some great suggestions and comments both on stupid things that people had seen users do and also some creative methods that IT departments used to expose the worst offenders at their company.
So now I'm asking you my readers. How do you deal with the security idiots at your company? And are there stupid things that I should add to my list? Comment Here and let me know.