Xerox 701P46740 manual Security tips, Customer Responsibilities

Page 35

updated to the newer version. Any security patch that is determined to have a negative impact to Xerox FreeFlow Print Server operation will not be added.

Customer Responsibilities

The administrator has the primary responsibility for maintaining the security of the network within the customer's site. It is important that network security is continuously monitored and maintained, and that appropriate security policies are established and followed.

The procedures outlined in this document assume a basic knowledge of UNIX, the vi editor, and general computing concepts. It is expected that the network administrator or system administrator responsible for network security understands the base commands (cd, chmod, cp, grep, kill, ln, ls, man, more, ps, etc.), and the UNIX directory path and filename structures shown in this document.

There is information within the text and in the appendix sections for reference to those who may not use UNIX often.

The Xerox FreeFlow Print Server operates on a Solaris OS. Enhancements have been made to increase security over the default OS configuration. Additional Solaris patches required by the Xerox FreeFlow Print Server are included as well. Several scripts are used to provide additional security for the Print Server. Not all scripts are public knowledge, only those that are public are defined in this document and these can be performed by the customer.

Xerox FreeFlow Print Server engineering will evaluate the latest Sun Security Alert Packs issued by Sun Microsystems and integrate these patches into the Print Server releases. Local customer support will be responsible for loading the latest Print Server software.

Xerox strongly recommends that the customer change passwords from the default settings since the ultimate security of the printing system resides with the customer.

NOTE: Please be aware that the Xerox Customer Support Personnel must have access to the new root password for service and support. It is the customer's responsibility to ensure that the root password is available for them.

Security tips

The following recommendations will enhance security.

Security Guide

31

Page 34 Page 36
Image 35
Page 34 Page 36
Contents Security Guide USA Table of contents Table of contents Conventions ContentsAbout this guide Customer support System supplied security profiles SecurityFTP CD-ROMBSM Enable and disable servicesS70UUCP S72AUTOINSTALLS40LLC2 S47ASPPPS77DMI S15NFS.SERVERS17HCLNFS.DAEMON S76SNMPDXSecurity Guide Security Guide User level changes OS and host information hidden Disabling secure name service databasesMulticast routing disabled Solaris file permissionsSendmail daemon secured Executable stacks disabledRemote CDE login disabled Xerox FreeFlow Print Server router capabilities disabledDisabling LP anonymous printing Remote shell internet serviceEnable-ftp and disable-ftp Security warning bannersLocal users and groups Setting the current and default profilesAccount management Creating user-defined profilesDefault user groups and user accounts Creating user accounts Group authorizationCDS MED CD-ROMAuto-Logon Password security Default Screen/Auto-LogoffHow to Enable/Disable Strong Password Strong PasswordsGUI Logging Audit LogsUser Activity on the System Accessing the Xerox FreeFlow Print Server through ADSDate/Time User Login/Logout Changing individual passwordsIP Filtering Limiting accessRemote Workflow Using the Print Server SSL/TLS Security FeatureSecure Socket Layer Isgw Creating and Using a Self-Signed CertificateSecurity Guide Digital Certificates Network Protocol Wins Http IPP SnmpNFS Micr modeSecure Print SSLXerox responsibilities Prevent Unauthorized Queue ChangesRoles and responsibilities Queue LockCustomer Responsibilities Security tipsOnline Help for security Virus Scan
Top Page Image Contents