Re: [Oscarmcmaster-bc-users] internet access
open source web-based Electronic Medical Record (EMR) system
Brought to you by:
davidhcchan,
jaygallagher
From: my f. <myf...@ya...> - 2008-05-22 05:01:39
|
I will post a few ideas on security, perhaps the others can do the same. johnchwk ----- Original Message ---- From: "Kirkham, Colleen" <col...@fa...> To: The OSCAR BC UserGroup list <osc...@li...> Sent: Wednesday, May 21, 2008 9:30:57 PM Subject: Re: [Oscarmcmaster-bc-users] internet access There have been several interesting discussions in the past year on the list serve about security. I am wondering if those of you that seem to know quite a bit about this -Johnchwk, Danny, Jim Busser, Jel, David etc. would consider jotting down a few paragraphs on this topic we could put on the website in the "information for OSCAR users" section. It would be great if you could summarize these dialogues into something brief we can post. I don't know if we need specific guidelines, but maybe just some things for users to consider, useful links etc. If you send it to me as I document, I can upload it to the site. We also don't have anything on the backup page of the website...if anyone is so inclined as to write a paragraph or two!! Colleen -----Original Message----- From: osc...@li... [mailto:osc...@li...] On Behalf Of my fly Sent: May 21, 2008 7:09 PM To: The OSCAR BC UserGroup list Subject: Re: [Oscarmcmaster-bc-users] internet access Security is not an all or nothing affair. Every layer of protection helps prevent you having to answer to having patient's data exposed. You can liken it to your passport, which you keep in a locked safe which is kept in a locked house, which in turn has a security system. Even though your house is not impenetrable, your passport is more safe than if it were left lying on the table with the front door open. No software is bug-free and no system is 100% secure. Even if Oscar were 100% secure, other software (e.g. Tomcat, MySQL, ssh etc, etc) might enable a hacker to access your system and your patient data. Every layer of added security simply makes it a little harder to breech your system. Oscar is designed to be an EMR, not a firewall. It does not have "2 layers of security". The NSA has been hacked http://www.theregister.co.uk/2003/03/21/hackers_claim_nsa_breach/ Why not just take a few precautions, for the sake of your patients? johnchwk ----- Original Message ---- From: John Yap <joh...@sh...> To: The OSCAR BC UserGroup list <osc...@li...> Sent: Tuesday, May 20, 2008 9:56:05 PM Subject: Re: [Oscarmcmaster-bc-users] internet access Thanks to all for your comments. I have found my wireless Macbook and iMac (both relative new) run wirelessly as fast as my PC hooked directly to the router. I think I'll forgo the static IP (can always add it later), but will use the NOIP or DynDNS solution. I'm a little intimidated by all the firewalls and tunnels. I feel like in a bunker now! I briefly attempted to use the Fraser Health's VPN access to Meditech a few years ago. This, after many years using simple phone dial-up with modem, which allowed us to access labs/xrays/etc from the hospital system. Then, because of security, they went the internet route, and you needed VPN access, a keyfob ID# generator, and about 3 levels of passwords. Well - it worked. Very secure. I couldn't not ever sign in!! I gave up after a month. Do I really need so many layers of access security? I thought OSCAR already had 2-levels built in? I intend to use remote access from home some times. Hopefully, not so much, if I can get all the paperwork done at the office, which is one of the reasons I need an EMR, with voice dictation - Quentin's quite right about this! Thanks again everyone! John ----- Original Message ----- From: "Jel Coward" <je...@wi...> To: "The OSCAR BC UserGroup list" <osc...@li...> Sent: Tuesday, May 20, 2008 8:55 PM Subject: Re: [Oscarmcmaster-bc-users] internet access > James Busser wrote: >> >> The alternative to paying for (and having to remember) a static IP >> address is to use a free or premium "dynamic DNS redirection service" >> such as that available from www.noip.com . They provide a small piece >> of software (an "update client") that you can put on your server >> which regularly "checks" its own IP address (in case it has been >> changed) and "publishes" that address for example to >> drjohnyap.noip.com. That way, when you try to connect from away, you >> would not need to know the actual IP, you would only need to point >> your browser to drjohnyap.noip.com >> >> > http://www.dyndns.com/ works very reliably for this - and integrates > well with most routers that sit between your server and the outside > world. The router updates the service with its outside world IP address. > > I have used that service for years without a blip. > > I know that some support companies just set this up for you - so you > don't have to worry. >>> Shaw charges an extra $15 per mo for this, over the basic >>> Entrepreneur Package of $50 per mo. The cheapest Telus package >>> (ADSL) is >>> about $67, but does not include a static IP address - I'm sure that >>> could be >>> added, for a small fee! >>> > I have never bothered with a static IP. > > > Regarding ISPs - we have Telus adsl at home - which is horrible in the > evenings but ok the rest of the time. > > We have shaw cable in the office (they just took it over from mycoast) - > and since the takeover it has been horrible too! I am trying to find > time to speed test it a few times and then complain to Shaw - I have > heard of others who have done this and been credited (with more slow > service probably, but 'owt's better than nowt' as they say in Barnsley. > > Cheers > > -- > Jel > > > ------------------------------------------------------------------------ - > This SF.net email is sponsored by: Microsoft > Defy all challenges. Microsoft(R) Visual Studio 2008. > http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ > _______________________________________________ > Oscarmcmaster-bc-users mailing list > Osc...@li... > https://lists.sourceforge.net/lists/listinfo/oscarmcmaster-bc-users ------------------------------------------------------------------------ - This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Oscarmcmaster-bc-users mailing list Osc...@li... https://lists.sourceforge.net/lists/listinfo/oscarmcmaster-bc-users __________________________________________________________________ Ask a question on any topic and get answers from real people. Go to Yahoo! Answers and share what you know at http://ca.answers.yahoo.com ------------------------------------------------------------------------ - This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Oscarmcmaster-bc-users mailing list Osc...@li... https://lists.sourceforge.net/lists/listinfo/oscarmcmaster-bc-users ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Oscarmcmaster-bc-users mailing list Osc...@li... https://lists.sourceforge.net/lists/listinfo/oscarmcmaster-bc-users __________________________________________________________________ Looking for the perfect gift? Give the gift of Flickr! http://www.flickr.com/gift/ |