Educause Security Discussion mailing list archives
Re: " ...colleges and universities all over the United States found that their network printers were spilling out Auernheimer’s flyer."
From: Shawn Merdinger <shawnmer () GMAIL COM>
Date: Tue, 29 Mar 2016 10:30:11 -0400
On 3/29/16, Matthew Trump <M.Trump () kent ac uk> wrote:
What justification was provided for connecting printers to the internet at these institutions?
Perhaps a more pressing question is if printers are so cavalierly put on public IP, what else do colleges and universities have exposed? Have a look for yourself with the following Shodan searches. ModBus? Check. +++++++++++++ https://www.shodan.io/search?query=org%3Auniversity+port%3A502 Niagara Building Control Systems? Check. +++++++++++++++++++++++++++++++ https://www.shodan.io/search?query=org%3Auniversity+niagara https://www.shodan.io/search?query=org%3Acollege+niagara VNC with no authentication set? Check. +++++++++++++++++++++++++++++ https://www.shodan.io/search?query=org%3Auniversity+%22authentication+disabled%22 https://www.shodan.io/search?query=org%3Acollege+%22authentication+disabled%22 IPMI bare metal iLo access? Check. +++++++++++++++++++++++++++++ https://www.shodan.io/search?query=org%3Auniversity+port%3A623 https://www.shodan.io/search?query=org%3Acollege+port%3A623 Windows XP? Check. ++++++++++++++++ https://www.shodan.io/search?query=org%3Auniversity+os%3A%22windows+xp%22 https://www.shodan.io/search?query=org%3Acollege+os%3A%22windows+xp%22 SNMP? Check. ++++++++++++ https://www.shodan.io/search?query=org%3Auniversity+port%3A161 https://www.shodan.io/search?query=org%3Acollege+port%3A161 Windows SMB, NetBios? Check and Check. +++++++++++++++++++++++++++++++++++++++ https://www.shodan.io/search?query=org%3Auniversity+port%3A445 https://www.shodan.io/search?query=org%3Acollege+port%3A445 https://www.shodan.io/search?query=org%3Auniversity+port%3A137 https://www.shodan.io/search?query=org%3Acollege+port%3A137 References: http://seclists.org/educause/2014/q2/266 http://www.tripwire.com/state-of-security/government/locating-scada-and-ics-systems-on-edu-networks-with-shodan/ Cheers, --scm
Current thread:
- " ...colleges and universities all over the United States found that their network printers were spilling out Auernheimer’s flyer." Shawn Merdinger (Mar 28)
- Re: " ...colleges and universities all over the United States found that their network printers were spilling out Auernheimer’s flyer." Tracy Mitrano (Mar 28)
- Re: " ...colleges and universities all over the United States found that their network printers were spilling out Auernheimer’s flyer." Haselhoff, Brent (Mar 28)
- Re: " ...colleges and universities all over the United States found that their network printers were spilling out Auernheimer’s flyer." Harry Hoffman (Mar 28)
- Re: " ...colleges and universities all over the United States found that their network printers were spilling out Auernheimer’s flyer." Shawn Merdinger (Mar 28)
- Re: " ...colleges and universities all over the United States found that their network printers were spilling out Auernheimer’s flyer." Frank Barton (Mar 29)
- Re: " ...colleges and universities all over the United States found that their network printers were spilling out Auernheimer’s flyer." Matthew Trump (Mar 29)
- Re: " ...colleges and universities all over the United States found that their network printers were spilling out Auernheimer¹s flyer." Brad Judy (Mar 29)
- Re: " ...colleges and universities all over the United States found that their network printers were spilling out Auernheimer’s flyer." Shawn Merdinger (Mar 29)