Friday, January 18 2013.
From a technical point of view, the security of the Archive network has some challenges. While Internet access must be possible for Archivists and researchers,, the intention is not to provide public access to the Internet like an Internet Café, so browsers using the workstations or people using their own devices to access the Archive via a wireless connection should only be able to access the Archive. Often security threats are considered mainly as coming from the outside of the network, but the public context of a community archive must assume that threats may also originate from within the network. In the Linux world, this may be achieved by only allowing more general access by packets tagged with a logged-in user's credentials, meaning the default is for restricted access. In addition to conventional firewalling, the main externally accessible services are protected with software to prevent repeated access attacks. The use of Linux workstations provides peace of mid regarding the possibility of viruses and other malware, as Linux remains resistant to these forms of attack. While archivists may use non-Linux machines to access the Archive, it is their responsibility to ensure only clean files are placed into the Archive. Security is too big a subject to describe generically here, but the point is that running a community archive network does pose some additional challenges which need to be thought through. Again, the use of Free and Open Source software reduce some security risks and provides configuration scope to mitigate against others.