The client emails me requesting security permissions for users that use our banking software application. I send her back out a complete PDF document that outlines EVERY permission for EVERY directory and subdirectory. The she emails me back:
"Actually, my boss has asked for a memo from Baker Hill that we can show the auditors. Any chance of getting that?"
You've gotta be kidding me... My reply:
"No, I'm sorry, we don't have a security 'memo'. You could always create a generic memo and use the document I sent you as an attachment."
Client: "Oh yeah, I guess I could do that. But will that still show all the permissions in the MEMO?"
Oh...they don't pay me enough....