Print services for a MFD or printer are not restricted to Port 9100 and/or LPD (Port 515). Where both Windows and non-Windows clients need services from the same device, both Port 9100 and LPD can be enabled simultaneously.
An XCCDF Rule
Description
Printer services running on ports other than the known ports for printing cannot be monitored on the network and could lead to a denial of service it the invalid port is blocked by a network administrator responding to an alert from the IDS for traffic on an unauthorized port.
| Property | Value |
|---|---|
| Responsibility | System Administrator |
| IA Controls | DCBP-1 |
| Potential Impact | Print clients configured to use the unauthorized port(s) will not be able to print until they are reconfigured to use the correct port. |
- ID
- SV-7015r1_rule
- Version
- MFD03.001
- Severity
- Low
- Updated
Remediation Templates
A Manual Procedure
Develop a plan to coordinate the reconfiguration of the printer servers and clients so that print services runs only on authorized ports. Obtain CM approval of the plan and implement the plan.