OT:Multifunction Printers: The Forgotten Security Risk

Boaz Bezborodko boaz at mirrotek.com
Thu Feb 14 10:33:03 PST 2008


Since an important part of the problem is what is coming out of the 
printers' network port then couldn't you put a device between the 
printer and the network to monitor it's activity?  I was thinking of 
something like a hacked Linksys NSLU2 working as something of a firewall.

Boaz

Bob Rasmussen wrote:
> On Thu, 14 Feb 2008, Boaz Bezborodko wrote:
>
>   
>> http://www.eweek.com/c/a/Printers/Multifunction-Printers-The-Forgotten-Security-Risk/ 
>>     
>
> The timing is interesting, as I'm working on a white paper on printing 
> security.
>
> The article referenced above touches on the possibility of hacking a 
> high-end printer to capture, save, and export reports.
>
> The area I am focusing on is the security (or lack thereof) of network 
> data flowing to the printer. This data is usually enencrypted, and 
> sometimes travels across the Internet unencrypted. It is very easy to 
> "sniff" a network and extract print data on its way to the printer. And 
> there seem to be very few tools to prevent this.
>
> If any of you have thoughts on the subject, please speak up.
>
> Regards,
> ....Bob Rasmussen,   President,   Rasmussen Software, Inc.
>
> personal e-mail: ras at anzio.com
>  company e-mail: rsi at anzio.com
>           voice: (US) 503-624-0360 (9:00-6:00 Pacific Time)
>             fax: (US) 503-624-0760
>             web: http://www.anzio.com
>  street address: Rasmussen Software, Inc.
>                  10240 SW Nimbus, Suite L9
>                  Portland, OR  97223  USA
>
>   
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.celestial.com/pipermail/filepro-list/attachments/20080214/2354a694/attachment.html 


More information about the Filepro-list mailing list