Educause Security Discussion mailing list archives
Re: Printer Security
From: randy <marchany () VT EDU>
Date: Mon, 4 Nov 2019 15:37:22 -0500
You can download our short list at https://security.vt.edu/content/dam/security_vt_edu/downloads/printersecurityrecommendations/ITSO_Printer_Security_Recommendations_rev.20190708.pdf -Randy Marchany VA Tech IT Security Office and Lab On Mon, Nov 4, 2019 at 3:20 PM Barton, Robert W. <bartonrt () lewisu edu> wrote:
Afternoon, We are in the process of reviewing our policy for printers/MFPs and changing our vendor. If anyone can share what they have done for printer security, I would appreciate it (please email off list if sensitive in any way). Below is our current/future security listing (sans details), any comments are welcome; - Change administrator and all other default accounts to non-default passwords. - Update SNMP community strings. o Beware – the default driver install MAY use SNMP. o Use a community string that identifies the machine and can be replicated to other areas on campus. - Update all firmware (if allowed). - Do not network the printer unless necessary - Add all MFPs to management applications - Do not allow access to printers via the public Internet (unless necessary) - Setup LDAP on all MFPs - Use passcodes to secure output - Setup ‘white list’ for access - Follow manufacturer best practices on security - Shutdown unnecessary services and protocols - Contact the Office of Technology when disposing of a printer (do not throw in trash or recycle without support). - All IP information must be assigned by the Office of Technology - Encrypt the printer’s hard disk (if an option) - Shut off o USB Printer (if not used) o Wireless Printing - Configure printer to purge memory or disk - Configure any FAX option to only allow ‘image data’ (if possible) - Robert W. Barton Executive Director of Information Security and Policy Lewis University One University Parkway Romeoville, IL 60446-2200 815-836-5663 This message (including any attachments) is intended only for the use of the individual or entity to which it is addressed and may contain information that is non-public, proprietary, privileged, confidential, and exempt from disclosure under applicable law or may constitute as attorney work product. If you are not the intended recipient, you are hereby notified that any use, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this communication in error, notify us immediately by telephone at (815)-836-5950 and (i) destroy this message if a facsimile or (ii) delete this message immediately if this is an electronic communication. Thank you. ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
Current thread:
- Printer Security Barton, Robert W. (Nov 04)
- Re: Printer Security Scantlin, Aaron J. (Nov 04)
- Re: Printer Security Hart, Michael (Nov 04)
- Re: Printer Security Frank Barton (Nov 04)
- Re: Printer Security Frank Barton (Nov 04)
- Re: Printer Security randy (Nov 04)