[archinal]

You bet they do! In the past I have had to manually install my company's certificates as a root CA. The annoying thing was that the certs they use are expired and use SHA-1, so I also had to explicitly tell my browser to trust expired/unsafe certificates as well. All in the name of increased security!

[terminado]

I would quit a job like that, unless there were seriously profound reasons for such a grotesque invasion.

1. There are proper ways to restrict activity without resorting to eavesdropping.

2. If they don't trust you enough to be responsible and use good judgement, you're probably stuck in a dead-end situation anyway.

3. In the more rare scenarios, where you might be operating live-saving or life-threatening equipment, or handling the salaries of many people, and dealing with monentary quantities in the many millions of dollars, guess what? You probably shouldn't be using an ordinary computer, with a web browser connected to the internet to perform those sorts of tasks, within the same operating system environment as ordinary web surfing to begin with.

[dec0dedab0de]

Some companies in highly regulated industries intercept, and inspect all traffic purely because it's easier. Though if this raised a flag, and you showed them what link you clicked, any sane IT department would laugh and start sending the link to their friends.

[terminado]

Other companies (tech compnies, even) engage in ridiculous behavior like timing the minutes of your bathroom breaks, and so forth.

Call centers, data entry, tier one support.