NFS port monitor restricted | Xerox 701P40211 specs

System Guide

Security and Network Setup

Network parameters secured

Sun's nddconfig security tool is run. For additional information, view Sun's document, Solaris Operating Environment Network Settings for Security, at http://www.sun.com/solutions/blueprints/ 1200/network-updt1.pdf.

Executable stacks disabled

The system stack is made non-executable. This is done so security exploitation programs cannot take advantage of the Solaris OE kernel executable system stack and thereby attack the system

NFS port monitor restricted

The NFS server normally accepts requests from any port number. The NFS Server is altered to process only those requests from privileged ports. Note that with the high security setting, NFS is disabled; however if the service is re-enabled manually the port restriction will still apply.

Remote CDE login disabled

The Remote CDE login is disabled.

DocuSP router capabilities disabled

The DocuSP router capabilities is disabled (empty /etc/notrouter file created).

Security warning banners

Security warning banners are displayed when a user logs in or telnets into the DocuSP server. This message explains that only authorized users should be using the system and that any others face the possibility of being monitored by law enforcement officials.

NOTE: DRW (DocuSP Remote Workflow) is not impacted by security settings.

Common Controller

4-9

Image 33

Xerox 701P40211 manual Network parameters secured Executable stacks disabled, NFS port monitor restricted

Contents

Xerox Document Services Platform Series USA Table of Contents Table of Contents Printing FinishingFonts Accounting and Billing Troubleshooting Hints and Tips Table of Contents Table of Contents System Guide Viii Contents IntroductionAbout this guide Customer Support Conventions Internet Services Http Gateway Configuration Gateway Configuration IPP Gateway Configuration Type cd /opt/XRXnps/XRXippGateway Administrator must enable Snmp in License Manager Simple Network Management Protocol Snmp Configuration Snmpdebuglog Configuration variables Snmp MIB Support Printer and job messages Gateway Configuration System Guide Type cd /opt/XRXnps/XRXnwqsgw/bin NDS Setup Gateway Configuration System Guide Common Controller Backup Backup and Restore Restore Backing up a System Restoring a System Type restore Access and Security Security and Network Setup Changing the logon level Overview of Security User Password changes Roles and responsibilitiesXerox responsibility DocuSP 3.7 security changes Security Setup Using the High security setting Security and Network Setup System Guide User level User and File-level changes Solaris file permissions secured Multicast routing disabledOS and host information hidden Sendmail daemon secured Remote CDE login disabled Network parameters secured Executable stacks disabledDocuSP router capabilities disabled NFS port monitor restricted DigiPath and Decomposition Services Configure-xdss scriptXdss script components Disabling LP Anonymous Printing Disable-security and enable-security scripts Remote shell internet serviceEnable-ftp and disable-ftp scripts User Account Management Print command line client from remote systems Other security tips Configure for xrxusr Document and backup Sample of inetd.conf fileOnline help for security # Syntax for TLI-based Internet services # only on machines acting as boot servers Orstream or dgram #rexd/1 tli rpc/tcp wait root /usr/sbin/ rpc.rexd rpc.rexd How Do I? Answer Quick reference How Do I? Answer Controller settings for limited Fifo scheduling/printing PrintingFirst In/First Out Fifo Printing ‘Enabling Fifo Job Scheduling’ Enable/Disable Fifo Job Scheduling ‘No Change Made’ Enabled Disabled Ascii and PCL Printing Utility Impact on DocuSP printersSetpclcontrol Utility Set lp/lprcopycount utility # ./setVPSoption -2NONVPS Socket Gateway Configuration Utility setVPSoption Tiff files Tiff orientationPerformance considerations Supported Tiff tags Resolution UnitsCompression T4 Option Y Resolution Micr EnablementStrip Byte Counts and Strip Offsets Tile Width, Tile Length, Tile Offsets, Tile Byte Counts Paper Trays Using Vipp Printing hints Printing System Guide Common Controller Finishing Subset FinishingDocuTech Subset Offset Page Level Jog Creating jobs to use subset finishing PCL Offset/Separator/Subset Finishing command PCL Paper Source Command Mixed StackingLarge Capacity ESC&15H Envelope Feed ESC&16H Additional finishing information Finishing System Guide Common Controller How to choose fonts FontsFonts Font download option Resident FontsPostScript Resident Fonts System GuideFonts FontsSystem Guide PCL resident fonts PCL 5e resident bitmap fonts Non Resident FontsDownloaded fonts Optional or soft fonts Font substitutionPostScript fonts PCL 5e fonts Accounting Accounting and BillingAuto exporting accounting log Accounting exported values Accounting file fields System Guide Accounting and Billing Bytes Read SecondsProcessed Skipped Accounting and Billing System Guide Pages Printed Sheets Printed Accounting and Billing System Guide Billable Events Billing Market Region Billing Meters for Region Billing Meters Troubleshooting Calling for serviceDeclared faults Undeclared faults Printer faultJob fault Client problems Windows problemsMacintosh problems GUI problems DigiPath problems Font problems Print Quality problems Inoperable system problems Job flow problemsAt the # prompt, typesync sync halt and press Enter System Guide Troubleshooting Job Integrity problems PDL problemsPostScript problems Tiff problems Restore password Restart DocuSP software without rebooting Productivity and performance problemsProblems when saving a job Alljobslog Printing system logsSystemlog Statuslog Printing the system logs Epexceptionlog and epprimarylog Rebooting and restarting Printing the accounting logType sync sync halt Opt/XRXnps/bin/XJDC -option,option... filename Loading XJDC/Unix Xjdc Hints and Tips Configuring XJDC/Unix BASIC.JSL Output files Troubleshooting System Guide General Hints and Tips General Comments Color SystemsTime used to generate the PDL Time used to transfer PDL Job submission hints Number of images Time required to print PDLEthernet Gateways Job submission order Job RIP HintsVariable data Image Quality Skipped Pitches Job Printing Hints Perform a Trace PCI Channel Interface PWB Trace Capture Procedure Export the trace file to floppy Numerics Index Index System Guide INDEX-3 Index INDEX-4 System Guide