(this is a slightly amended reprint of an article I wrote for Computers in Libraries magazine in 2016 and I’m putting it here because it’s timely. Original title: Practical Technology – Digital Privacy is Important Too. If something seems inaccurate, let me know.)
This month’s column is amplifying the signal on a movement that has been brewing in the library world: getting libraries to make patron’s digital activities as secure as their lending records. There are a few ways to do this but I’m going to focus on using HTTPS. Continue reading “Sensible talk about HTTPS”
Brian points to this article about USB keyloggers that were found attached to computers at public libraries. If I saw one of these on a library computer, I might not even be sure what it was, or that it wasn’t part of the keyboard. Know your hardware, what to expect and what not to expect and check out the backs of your computers from time to time.
I’m aware that accessing someone’s conference planner is not the same level of hackery as stealing their credit cards or breaking into their email account. However, I would just like to say that having an event planner where the password is not only the same for every user (until it’s changed) but also printed right there on the web page, turns the whole idea of having a password or any sort of security into a big joke. How do we teach librarians what good technology looks like if this is how we make them interact with us? For the record, using just the ALA Staff list, I was able to log in to someone else’s event planner in under a minute. The vendors get their password in an email, not much better.
I went to this page from Nicole’s post (I’m not going to the conference) just to see if it was really true that the page claims it is “best viewed in IE” which is yet another “tech don’t” in the world of 2008 browsers so much so that it calls into question all the rest of the site.
I don’t belong to ALA anymore. I did my time, paid my dues, donated a lot of service time to the organization and tried to be gentle and patient as they steered a big organization through the minefield of technological change. The Event Planner has been an outsourced, broken and insecure tool since they started using it. I’d like to see ALA do better, but my optimism that this will happen is flagging.
The Reimer Digital Library, an online archive to publicly accessible US Army publications has been password protected since February 6th as a security measure. In response to a Federation of American Scientists FOIA request and a pointed coverage by the Washington Post, the Army wil be restoring access to the library “within two weeks“