Security Basics mailing list archives
Re: Securing Printers
From: Peter Wan <peter.n.wan () gmail com>
Date: Tue, 16 Nov 2004 16:42:00 -0500
I remember seeing a reference to a paper at Black Hat that addressed this topic, but can't seem to find the information on the paper. Here is another reference that addresses risks of an accessible printer: http://www.giac.org/practical/GSEC/Vernon_Vail_GSEC.pdf It talks about the physical security worries, but then talks about how abuse of insecure services provided by the printer (Web, FTP, etc.) can cause trouble. --Peter On Mon, 15 Nov 2004 11:18:47 -0600, Bryce Embry <embryb () k12tn net> wrote:
Howdy, A recent thread on BugTraq, along with some discussions with my colleagues, has me curious about printer security. What dangers are there in giving a printer a public IP address? To me, a printer with a public IP sounds utterly foolish, but I'm not doing a very good job of making this point with my colleagues. They usually respond with the question "Why would anyone want to print something to a printer they can't even find?". My answers (usually "Why not?" or "it's a system running an OS that is subject to exploitation") don't seem to be very convincing, especially since I can't produce any known exploits. I would appreciate any arguments and reasoning that would carry more weight, or enlightenment to help me stop being so paranoid. Thanks, Bryce
-- Peter Wan <peter.n.wan () gmail com>
Current thread:
- RE: Securing Printers, (continued)
- RE: Securing Printers Yvan G.J. Boily (Nov 15)
- Re: Securing Printers Virgo Pärna (Nov 16)
- RE: Securing Printers David Gillett (Nov 15)
- Re: Securing Printers Ed Donahue (Nov 16)
- Re: Securing Printers Zurt (Nov 16)
- Re: Securing Printers Matthew Romanek (Nov 16)
- RE: Securing Printers Corey Watts-Jones (Nov 19)
- Re: Securing Printers Jonathan Kline (Nov 16)
- Re: Securing Printers Frank T. Clark (Nov 16)
- Re: Securing Printers xyberpix (Nov 16)
- Re: Securing Printers Peter Wan (Nov 16)
- Re: Securing Printers Spigga (Nov 16)
- RE: Securing Printers Julen C (Nov 16)
- RE: Securing Printers Dubber, Drew B (Nov 16)
- RE: Securing Printers Dante Mercurio (Nov 17)
- RE: Securing Printers Samuel Petreski (Nov 18)
- Re: Securing Printers Adam Jones (Nov 19)
- RE: Securing Printers Samuel Petreski (Nov 18)
- RE: Securing Printers Herbold, John W. (Nov 19)
- RE: Securing Printers Corey Watts-Jones (Nov 22)
- RE: Securing Printers Herbold, John W. (Nov 22)
- RE: Securing Printers Corey Watts-Jones (Nov 22)
- RE: Securing Printers Yvan G.J. Boily (Nov 15)