Virus.Org IT Security News and Information Portal. We offer the latest IT security news, updates, product reviews, books, and articles for all you IT security professionals out there. Enter and get the best IT security information on the Internet.

 
. Welcome to the Virus.Org Mailing List Archive  
.
.


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]


Re: Dumping Data From Printers
.

  • To: Paul Melson <[EMAIL PROTECTED]>
  • Subject: Re: Dumping Data From Printers
  • From: Gary Warner <[EMAIL PROTECTED]>
  • Date: Thu, 08 May 2008 20:33:04 -0500
  • Cc: [EMAIL PROTECTED], [EMAIL PROTECTED]
  • In-reply-to: <[EMAIL PROTECTED]>
  • References: <[EMAIL PROTECTED]> <[EMAIL PROTECTED]>
.
 
Paul Melson wrote:

what would be the greatest risk if network admin leave Network printers

without password protected.
Actually, my favorite demonstration of how EVERY DEVICE ON THE NETWORK MUST BE SECURE was to find a printer on the same subnet as something sensitive (Mainframes work nicely for this demo) and then change the IP address of the printer to match the IP address of the mainframe.
If there isn't a sensitive server handy, setting the printer to have the same IP address as the Default Network Gateway for its network segment is also an effective demo. 


--



--------------

Gary Warner
Director of Research in Computer Forensics
The University of Alabama at Birmingham
[EMAIL PROTECTED]            [EMAIL PROTECTED]


--------------


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
 
.
.
 
Copyright (c) Virus.Org 1997-2006.
All Trademarks Acknowledged.
Please view our Terms and Conditions and our Privacy Policy.