Technical information

Network Security White Paper ver. G.1.2

Page 20 of 72

1-8-3 Recommended precaution

Scenario 1:

Basic security settings - Change the usernames and password from the default value and the

passwords for each user to something difficult to guess and change it regularly.

Scenario 2:

Standard security settings - Encrypt all data.

Scenario 3:

High security settings - Disable the SNMP v3 service.

If it is not absolutely necessary, the SNMP v3 service should be disabled via Web Image Monitor or the

mshell.

Scenario 4:

Very high security settings - Close the SNMP v3 port.

If it is not absolutely necessary, the SNMP port should be closed via Web Image Monitor or the mshell.

1-9 SHELL (RSH/RCP)

1-9-1 Function Overview

The Remote shell (RSH/RCP) service provides the following functions via TCP port 514. This is typically

used from a UNIX/Linux client.

• Printing jobs from RSH/RCP clients

• Monitoring machine status and settings.

• Obtaining the print logs and the system logs.

• Transferring scan data to the Twain driver.

1-9-2 Potential Threats and Recommended Precautions

Destruction, Corruption and Modification of the File System

Access is read-only.

Possibility of Acting as a Server for Relaying Viruses

Because access is read-only, this situation is very unlikely.

Theft of Username and Password

All data is sent in clear text. However, no password is required for access to RSH/RCP. SFTP is

recommended in most situations.