OT:Multifunction Printers: The Forgotten Security Risk
Bill Campbell
bill at celestial.com
Thu Feb 14 09:33:37 PST 2008
On Thu, Feb 14, 2008, Bob Rasmussen wrote:
>On Thu, 14 Feb 2008, Boaz Bezborodko wrote:
>
>> http://www.eweek.com/c/a/Printers/Multifunction-Printers-The-Forgotten-Security-Risk/
>
>The timing is interesting, as I'm working on a white paper on printing
>security.
>
>The article referenced above touches on the possibility of hacking a
>high-end printer to capture, save, and export reports.
>
>The area I am focusing on is the security (or lack thereof) of network
>data flowing to the printer. This data is usually enencrypted, and
>sometimes travels across the Internet unencrypted. It is very easy to
>"sniff" a network and extract print data on its way to the printer. And
>there seem to be very few tools to prevent this.
I've been doing secure network printing for the better part of 20 years
using secure shell to transfer print jobs between *nix systems.
We also use OpenVPN, IPSec, etc. to connect remote sites securely which
makes it easy to handle remote printing direct to the printers as well.
Bill
--
INTERNET: bill at celestial.com Bill Campbell; Celestial Software LLC
URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way
FAX: (206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676
Those who cast the vote decide nothing.
Those who count the vote decide everything. (Joseph Stalin)
More information about the Filepro-list
mailing list