It’s still a good idea to check for a secure connection (HTTPS rather than HTTP at the beginning of the web address and/or a green padlock icon in the address bar) before entering sensitive information.
Show All Answers
Computers log off users automatically after 10 minutes of inactivity, and when your session ends early because of a queue or library closing, the same “Deep Freeze” process takes place. Please note that if you forget to log off (or are logged off by the system), your privacy will be protected, but you will most likely not be able to log in again without asking a staff member to reset your status.
We do keep track of which card numbers use the computers and when; however, the information that gets logged does not reveal any detail about your activity. It is purely for diagnosing and troubleshooting IT issues, and it is never shared.
The web browsers on library computers are equipped with two tools to protect your privacy. The first is a plugin called HTTPS Everywhere that provides an encrypted connection whenever possible. The second is a plugin called uBlock Origin that prevents banners, pop-ups, and tracking. The library has also enabled Do Not Track settings in browsers where possible.
No: unfortunately, HTTPS Everywhere is only available for Firefox and Chrome.
Sites that have built certain pages to use HTTPS will provide encryption on those pages in Internet Explorer, but without the plugin, their HTTP pages will not provide that extra layer of security.
HTTPS Everywhere can be turned off by clicking the icon in the browser’s toolbar (a blue square with a white S in it), then “Disable HTTPS Everywhere.”
uBlock Origin has a reputation for independence. It also performs well in speed tests, pulling less memory and processing power away from the browser's other tasks (like loading the content you want).
The question of whether or not blocking ads is ethical is up to each user, as there are valid arguments from both sides of the debate. If you would like to disable uBlock Origin during your computer session, either for ethical reasons or because it interferes with how a site functions, click on the shield-shaped logo in the browser’s toolbar, then follow the instructions printed beneath the large power icon.
There are some lists of compliant sites, e.g. http://donottrack.us/implementations, but since the policy continues to evolve, the library believes it’s best to combine Do Not Track with other privacy defenses, such as uBlock Origin.
The secure network encrypts communications and is much safer than the free network. It isn’t the password that protects users so much as the encryption key (the value applied to data to encrypt or decrypt it). Since a different key is used each time, there is no need to ration the password. However, we do change to a new password once every six months or so. Library staff members can provide you with the current password.
We do not keep privacy screens in the library because of their tendency to interfere with screen visibility. You can check out a laptop on the first floor and use it in a location where no one can see your screen.
We use Faronics Antivirus, which proactively scans for all kinds of potentially unsafe applications: adware, Trojans, spyware, keyloggers, and other forms of malicious software. ESET Endpoint Antivirus gets consistently positive ratings from IT professionals, who particularly appreciate its speed and accuracy.
All library computers have the same IP address and use random ports for each request. Computer users may download the TOR browser on library PCs and use it during their sessions. It will be removed during the Deep Freeze reset between sessions.
The library is evaluating the possibility of enabling HTTPS on the watertownlib.org website. Our catalog is administered via the Minuteman Library Network (MLN), so we cannot control its use of HTTPS. On that site, HTTPS only takes effect once you have logged in with your library card number and PIN. However, MLN has strong privacy practices, as detailed on this web page: http://www.mln.lib.ma.us/about/privacy.htm. Here is an excerpt from its policy: “MLN keeps no permanent record of sites visited by library users, the electronic databases accessed, or the searches performed by individual users. While we may disclose information about use of our website in aggregate (such as server use statistics), we will not disclose to third parties any information that could be used to identify individuals or their use of MLN resources, except as required by law or appropriate law enforcement procedures.”