From owner-freebsd-questions@FreeBSD.ORG Wed Apr 4 08:21:56 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id E5D051065670 for ; Wed, 4 Apr 2012 08:21:56 +0000 (UTC) (envelope-from perryh@pluto.rain.com) Received: from agora.rdrop.com (unknown [IPv6:2607:f678:1010::34]) by mx1.freebsd.org (Postfix) with ESMTP id A2B698FC18 for ; Wed, 4 Apr 2012 08:21:56 +0000 (UTC) Received: from agora.rdrop.com (66@localhost [127.0.0.1]) by agora.rdrop.com (8.13.1/8.12.7) with ESMTP id q348Lumr063270 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT) for ; Wed, 4 Apr 2012 01:21:56 -0700 (PDT) (envelope-from perryh@pluto.rain.com) Received: (from uucp@localhost) by agora.rdrop.com (8.13.1/8.14.2/Submit) with UUCP id q348LuhT063269 for freebsd-questions@freebsd.org; Wed, 4 Apr 2012 01:21:56 -0700 (PDT) (envelope-from perryh@pluto.rain.com) Received: from fbsd81 ([192.168.200.81]) by pluto.rain.com (4.1/SMI-4.1-pluto-M2060407) id AA26203; Wed, 4 Apr 12 01:20:50 PDT Date: Wed, 04 Apr 2012 08:19:53 -0700 From: perryh@pluto.rain.com To: freebsd-questions@freebsd.org Message-Id: <4f7c6699.ysDEG9sqC2v4v5Xl%perryh@pluto.rain.com> References: <4F75D37C.2020203@lovetemple.net> <20120330232307.41e420b1.freebsd@edvax.de> <4f7770b7.BkVKquuSmumStBb/%perryh@pluto.rain.com> <20120401112923.47e6c8a7.freebsd@edvax.de> <4f79c113.4NFuCWPOnCnPln6u%perryh@pluto.rain.com> <20120402073303.1ae0ea96@scorpio> <4f7b3fe0.PWM597T4KrLqJxhq%perryh@pluto.rain.com> <20120403084005.576af98e@scorpio> In-Reply-To: <20120403084005.576af98e@scorpio> User-Agent: nail 11.25 7/29/05 Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Subject: Re: Printer recommendation please X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Apr 2012 08:21:57 -0000 Jerry wrote: > > > Furthermore, there are means of encrypting print data ... > > > > Utterly irrelevant to the topic under discussion, which is > > the additional malware exposure that a PDF-accepting printer > > has relative to a printer that accepts only PCL and/or PS. > > FROM YOUR ORIGINAL POST: > "All the more reason to avoid wireless. (I had been thinking more > along the lines of someone intercepting sensitive print files, e.g. > tax returns, as they were being sent to the printer.)" I think you must have missed the parentheses, and the "had been". When I initially stated my distrust of wireless (in a post prior to the one you quoted here), I didn't specify a particular security- related reason, just general concern that it effectively bypasses the firewall. Here I note that Poly's concern about a printer being corrupted by receiving a malicious "firmware update" job is important, and acknowledge that my original concern about sniffing pales by comparison. > I again restate my original statement that there exists means of > encrypting data sent to a printer. Yes, provided the printer supports the corresponding decryption operation, but that capability is still irrelevant to the question of whether the printer's firmware can be corrupted by a malicious "firmware update" job. According to the report that Poly linked to, there are at least some printers that are vulnerable to that kind of attack.