some printer notes printers today come with os, a filesystem, big hard drives, and (open) network...
TRANSCRIPT
![Page 1: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/1.jpg)
![Page 2: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/2.jpg)
Some Printer Notes
• Printers today come with OS, a filesystem, big hard drives, and (open) network access
• Risks include:1.Sniffing print jobs going over the network in
the clear2.Storing warez, or copyright materials on them3.Using them as a basis for network scanning
![Page 3: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/3.jpg)
JetDirect & Port 9100/tcp
• Prints anything coming into port 9100/tcp
• Could send random data to port 9100 to exhaust resources
• OR…
• For fun: Change the Printer Window Text
![Page 4: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/4.jpg)
Fun With Jet Direct Printers
![Page 5: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/5.jpg)
NMAP Idle Scan
![Page 6: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/6.jpg)
How To Hide or Grab Files on an HP Printer
![Page 7: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/7.jpg)
![Page 8: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/8.jpg)
Disable IPX/SPX
![Page 9: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/9.jpg)
Disable AppleTalk
![Page 10: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/10.jpg)
Disable DLC/LLC
![Page 11: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/11.jpg)
Disable SNMPv1/v2 – Use SNMPv3
![Page 12: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/12.jpg)
Add A Password
![Page 13: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/13.jpg)
Add A Jetdirect Cert to Use SSL
![Page 14: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/14.jpg)
Use ACLs To Limit Access
![Page 15: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/15.jpg)
NMAP Scan• # Nmap 5.00 scan initiated Wed Nov 11 18:49:07
2009Interesting ports on hpprinter.wustl.edu (128.252.X.Y):• PORT STATE SERVICE REASON VERSION• 21/tcp open ftp syn-ack HP JetDirect ftpd• |_ banner: 220 JD FTP Server Ready.• 23/tcp open telnet syn-ack HP JetDirect printer telnetd
(No password)• 80/tcp open http? syn-ack• | html-title: hp color LaserJet 4650• Don’t let your printers on the network without a password!
We will find you!
![Page 16: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/16.jpg)
Minimum Security Baseline I
• Put printers on WUSTL private space• Enable telnet and web passwords• Enable SSL encryption if available• Turn off any protocols not being used like
IPX/SPX, AppleTalk, tftp, etc• Printer ACLs permit only your subnet(s)
![Page 17: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/17.jpg)
Minimum Security Baseline II
• Disable SNMPv1 and v2 if possible• Use SNMPv3 which includes encryption• Change the default SNMP string
![Page 18: Some Printer Notes Printers today come with OS, a filesystem, big hard drives, and (open) network access Risks include: 1.Sniffing print jobs going over](https://reader036.vdocuments.us/reader036/viewer/2022070401/56649f175503460f94c2e3b4/html5/thumbnails/18.jpg)
The IT Department “Fixing” An Insecure Printer