Posts by HiDard 3 publicly visible posts • joined 21 May 2024
Ahh yes, Fabric. The thing that still has no way to stop its users from sending your data anywhere on the internet and no plans to fix it properly (just the usual half-assed MS 'fix' which requires more spend).
I'm amazed any large org will even consider it. Anyone who can create a notebook or a pipeline (anyone who has access to Fabric, basically) can just send data to an AWS S3 bucket, or a REST API, and you can't limit what bits of Fabric users can spin up.
I can't speak for the spooks (apt it's almost Halloween) but other departments are on the DDaT payscale which allows them to pay significantly more for certain skills if you can actually evidence them, usually bumping the 'gurus' above their own line managers base pay.
It's still somewhat below what you could get as johnny freelancer, but it does help bridge the gap a bit. Only downside is it isnt pensionable and is a target rate which CDDO never bloody change, so each year it gets eroded by your base pay increasing, increasing your pensionable earnings and therefore reducing your take home pay.
Fabric users can create a Web or REST connection to an external web server and pump all of your data to it, or to any cloud service really. There isnt a way to stop that. So if someone wants to go rogue, they can go completely rogue and you won't even know because the Fabric logging is a nightmare to access.
Fabric can only ever be on or off. MS give you zero ability to restrict the things that can do the above to certain users. It's either users can use ALL fabric components, or they can use none.
But MS don't care. They provide you with little governance so they can cause organic (read metastatic) growth in your organisation that then forces you to buy lots of expensive capacity. You can't even stop users from uploading data to their own workspaces which admins can barely access.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2025
