Security problem with remote access to a Web based library system
Houston Louise
HoustonL at scc-csc.gc.ca
Fri Jul 27 09:15:23 EDT 2001
Our library system is outsourced to its supplier (i.e. the server/database
are housed on the supplier's premises). All maintenance, backups,
installation of updates are performed by our supplier. Recently, the
supplier has upgraded the system from a text based interface (with
Reflections access) to a web-based interface. This new interface is
developed entirely in World Wide Web technology (HTML, HTTP servers and Java
clients) on the client-server model, and supports thin clients running
browsers accessing the database.
In trying to access the new web-based system we have come across security
problems. Access to this new remote web-based system from our Intranet
apparently requires us to open up to 11 ports in our firewall for incoming
and outgoing data transfer (i.e. cataloguing, serials, acquisitions,
circulation). Needless to say, our Informatics people refuse to open up
that many ports for security reasons.
Has anybody else come across this type of problem and found a solution? Are
there other web-based integrated library systems on the marketplace?
Thanks in advance for any ideas or suggestions.
Louise Houston
Library Systems Coordinator, Supreme Court of Canada
Coordonnatrice systèmes de bibliothèque, Cour suprême du Canada
613-947-0628
houstonl at scc-csc.gc.ca
More information about the Web4lib
mailing list