Re: It's a copier, no it's a computer...
From: htredneck (dontcontactviaemail_at_not.com)
Date: 04/15/05
- Next message: Joachim Schipper: "Re: VPN to firewall or passthrough"
- Previous message: Munpe Q: "Re: Can't change MIP in netscreen 25"
- In reply to: TomC: "Re: It's a copier, no it's a computer..."
- Next in thread: TomC: "Re: It's a copier, no it's a computer..."
- Reply: TomC: "Re: It's a copier, no it's a computer..."
- Reply: TomC: "Re: It's a copier, no it's a computer..."
- Reply: TomC: "Re: It's a copier, no it's a computer..."
- Reply: TomC: "Re: It's a copier, no it's a computer..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 15 Apr 2005 00:04:42 GMT
Maybe I am still a little lost, or (if so, I apologize) I breezed
through your message so many times that I am now overlooking something
(sounds ludicrous, I know, but it happens to me all the time "Freaking
ADHD!!! haha)
at any rate... does the Savin NEED to connect to the Internet in order
to work?? So long as it doesn't get a default gateway, how will it
get there... even if it does, just block its access from your
firewall...
also, even if the thing is using WEP... how likely is it that someone
is frequency scanning and hacking your network? Not trying to make
light here, you may very well work in an envirment w/ such a risk, but
most "typical" environments don't suffer such hazards...
I have a lot of other thoughts on this matter since I have set MANY
copier/printer/scanner etc. devices up, I feel that I might be able to
be of some assistance here...
what model SAVIN w/ what management card and software?
The hard drive is in many cases a convenience item... caching, scan to
storage for frequently printed docs (sparing the need for a mail room
full of copied forms), print to HDD for storage so a passcode must be
typed at the console from the person who printed it (this is used in
community printing environments where sensitive docs are printed but
you only want the originator of the doc to be able to retrieve it)...
sorry about the run on sentences and thoughts here.. post back and I
will try to focus better on my next response..
htredneck
On Wed, 13 Apr 2005 05:17:22 GMT, "TomC" <albert@ayler.bye> wrote:
>ht;
>
>A bunch of good points, thanks.
>
>>I would not rely on a wireless
>> connection for printing or scanning if I could avoid it... but even if
>> you did permit it, the harm potential can be managed pretty well. It
>> will only be transmitting print data anyhow...
>
>The documents being printed in many cases contain information that should
>remain confidential. Even if the wireless access point could be blocked from
>accessing the rest of the network, the risk that the print jobs themselves
>might be intercepted was just not acceptable. Fortunately it was not
>necessary, as the Savin has a configurable 10-100 NIC, and by some miracle
>the numbered RJ-45 jack in the copier room turned out to actually be
>connected to the same-number jack on the server-room jack panel, so, no
>wireless needed.
>
>> do not permit any inbound traffic to target the device unless it is a
>> must and you have evaluated and approved of the connection... In most
>> cases I have been privy to, a direct connection from the Internet to a
>> printing device is rarely if ever necessary...
>
>I hope to make sure that it does not become necessary. What an annoyance.
>Savin's engineers must have worked long and hard to provide the email
>functionality that actually reduces their product's value to me.
>
>Tom
>
>"htredneck" <dontcontactviaemail@not.com> wrote in message
>news:425c1b31.50717906@news.comcast.giganews.com...
>> As I have read from other posts before mine, I agree... This device is
>> not a serious threat (under normal/default conditions)... obviously,
>> change the password as suggested above and make sure it is something
>> unique to your network (no other host shares the same PW)...
>>
>>
>> also, by default, Internet e-mail connectivity usually relies on the
>> local environment (e.g. your internal SMTP server or the server out on
>> your ISP)... someone needs to key this data into the device and it is
>> doubtful your client knows the required info, nor do they know how to
>> get it (from any other souce than you)...
>>
>> do not permit any inbound traffic to target the device unless it is a
>> must and you have evaluated and approved of the connection... In most
>> cases I have been privy to, a direct connection from the Internet to a
>> printing device is rarely if ever necessary...
>>
>>
>>
>> Wireless really shouldn't be a big deal either... just run a cable
>> from the printer to your switch... I would not rely on a wireless
>> connection for printing or scanning if I could avoid it... but even if
>> you did permit it, the harm potential can be managed pretty well. It
>> will only be transmitting print data anyhow... no passwords or user
>> IDs should be getting sent to the printer unless you require such data
>> to be provided (which is overkill in my opinion)...
>>
>>
>> Scanning could be a problem in a wireless environment if the data is
>> being sent to an internal server instead of the printer's local
>> drive... because in this case a username and password will be
>> necessary unless you set up an anonymous share on your server...
>> still, not a big deal in most cases (unless it is the photocopier
>> being used in the Michael Jackson case)... etc. etc.
>>
>>
>>
>> hope (at least) some of that made sense.
>>
>> More than happy to clarify my comments if requested.
>>
>>
>> -redneck
>>
>>
>>
>>
>>
>>
>>
>> On Mon, 11 Apr 2005 21:46:05 GMT, "TomC" <albert@ayler.bye> wrote:
>>
>>>An office for which I consult just purchased a Savin 4045sp
>>>copier/scanner/printer. I would normally handle any computer-related
>>>purchases, but since this was "just a copier," I didn't hear about it
>>>until
>>>the deal was completed. The more I see of its specs, the more the Savin
>>>looks like an Internet-capable computer with potentially serious security
>>>issues.
>>>
>>>Besides being able to serve as a network printer, it has a 20 GB hard
>>>drive,
>>>and can connect to the Internet to upload its own "scan and send" emails.
>>>The salesman convinced the office manager that there would be no problem
>>>connecting the device to the current network, since he would provide a
>>>wireless network access point that would simply plug into our 10-100
>>>switch.
>>>Confirming my worst fears, the Savin manual says that the 4045sp uses the
>>>obsolete WEP encryption for its wireless connection.
>>>
>>>I think that I can prevail against the wireless option, but not against
>>>using the Savin as a network printer. That "scan and send" feature really
>>>bothers me. It means that a device running software that I have not
>>>installed and do not understand could upload confidential client files to
>>>the Internet as email attachments. If I connect the Savin to the Internet,
>>>can it be hacked? I don't normally have to worry about shielding the
>>>server
>>>from access by its network printers, but in this case maybe I should.
>>>
>>>Next, the microwave will be demanding its own static IP.
>>>
>>>Comments & suggested reading appreciated.
>>>
>>>
>>
>
>
- Next message: Joachim Schipper: "Re: VPN to firewall or passthrough"
- Previous message: Munpe Q: "Re: Can't change MIP in netscreen 25"
- In reply to: TomC: "Re: It's a copier, no it's a computer..."
- Next in thread: TomC: "Re: It's a copier, no it's a computer..."
- Reply: TomC: "Re: It's a copier, no it's a computer..."
- Reply: TomC: "Re: It's a copier, no it's a computer..."
- Reply: TomC: "Re: It's a copier, no it's a computer..."
- Reply: TomC: "Re: It's a copier, no it's a computer..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
