This sysadmin’s story hit both /. and MeFi yesterday. Reading the comments thread is rather interesting; there are a number of good suggestions about other ways this guy could have handled the problem. Personally, there’s no way I’d consider doing something like this without some form of written documentation/authorization. Plus, there are a few things about the guy’s story that just don’t add up; I get a slightly skeevy feel about the whole thing.