Using a Stand-Alone Network Printer as a network attack entry point?

From: Nick Jacobsen (nick@ethicsdesign.com)
Date: Fri Aug 16 2002 - 00:20:03 EDT


Hi all...
    I came up with an idea, one that I've never heard discussed, of possibly
modifying a stand-alone network printer (like most of the high-end office
printers, hereafter referred to as a "SNP") to act as a full point to point
proxy, or at least a simple pass through to the port and IP you specify in
some sort of configuration. The idea here would be to take a SNP and modify
a ROM image for the specific printer to include the proxy functionality. I
realize this could turn out to be quite difficult, but at the same time, it
would provide a way into the internal network when no others are available.
Any comments are most DEFINITELY welcome, flames less so, but if it's a
stupid idea, let me know...

Nick Jacobsen
nick@ethicsdesign.com
ethics@netzero.net

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:24 EDT