HP Jetdirect J2550B HP Jetdirect Security Guidelines - Page 1

whitepaper HP Jetdirect Security Guidelines Table of Contents: Introduction ...1 HP Jetdirect Overview ...2 What is an HP Jetdirect?...3 How old is Your HP Jetdirect?...4 Upgrading ...5 HP Jetdirect Administrative Guidelines 6 HP Jetdirect Hacks: TCP Port 9100...7 HP Jetdirect Hacks: Password and SNMP Community Names 9 HP Jetdirect Hacks: Firmware Upgrade 9 HP Jetdirect Hacks: Sniffing Print Jobs and Replaying Them 10 HP Jetdirect Hacks: Printer/MFP access 10 Recommended Security Deployments: SET 1 11 Recommended Security Deployments: SET 2 12 Recommended Security Deployments: SET 3 18 Recommended Security Deployments: SET 4 28 Further Reading ...33 Introduction The availability of public information on the Internet for hacking HP Jetdirect products has prompted customers to ask HP about how they can protect their printing and imaging devices against such attacks and what is HP doing about preventing those attacks. In all fairness, some of this public information is of rather poor quality and inflammatory; however, some websites detailing the attacks and the vulnerabilities on HP Jetdirect are informative and raise valid concerns that need to be addressed. It is the purpose of this whitepaper to address customer concerns about these attacks and vulnerabilities and to recommend proper security configurations to help customers protect their printing and imaging devices. This whitepaper is only a small part of a broad initiative within HP to educate our customer base about printing and imaging security. Resources such as The Secure Printing website (http://www.hp.com/go/secureprinting) provide a great deal of information for customers about products, solutions, as well as configuration recommendations. In general, a lot of this information can be put to use on existing HP Jetdirect products, mainly because HP Jetdirect was 1