Date: Fri, 29 Mar 2024 10:20:05 -0400 (EDT)
Message-ID: <1253353313.610.1711722005231@spatlassian.scholarsportal.info>
Subject: Exported From Confluence
MIME-Version: 1.0
Content-Type: multipart/related;
boundary="----=_Part_609_136412872.1711722005231"
------=_Part_609_136412872.1711722005231
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
Content-Location: file:///C:/exported.html
TRAC2 5.2.3
TRAC2 5.2.3
5.2.3 - The repository staff shall have delineated roles, responsib=
ilities, and authorizations related to implementing changes within the syst=
em.
Explanation
SP grants authorizations and administers access controls with the intent=
ion of maintaining a high level of security and stability. As described in =
the repository's Security Plan,=
SP authorizes each staff member with limited access to system functionalit=
y based on his or her assigned duties. The Roles and Responsibilities document provides a ge=
neral outline of the relationship between staff roles and specific duties. =
Additional controls include the following practices:
- There is no root access to critical processes, servers, or the storage =
array under normal circumstances. Systems administrators have root access u=
nder exceptional circumstances.
- Staff cannot write to ejournals volumes that have been mounted with a '=
read-only' restriction. All ejournals volumes are mounted 'read-only' when =
they reach 2TB in size.
- Only systems administrators can write changes to the production servers=
or file system. Software developers have access to isolated development en=
vironments and the repository's code versioning system.
- SP's standard method of repairing errors in files or metadata is to req=
uest a corrected version of the article from the original Provider and re-i=
ngest the complete package.
- Only systems administrators have access to the server room. Only the Un=
iversity of Toronto Libraries' Information Technology Services department c=
an grant authorization to enter the server room.
- Only systems administrators can make changes to access controls.
Responsibility
Systems Administrator
Digital Preservation Policy Librarian
Relevant Documents
- Security Plan
- SP Roles and Resp=
onsibilities
------=_Part_609_136412872.1711722005231--