Educause Security Discussion mailing list archives
Re: FMAudit
From: Frank Barton <bartonf () HUSSON EDU>
Date: Thu, 18 Apr 2019 09:30:09 -0400
Robert. We have used it in the past, the vendor in question assured us that they were only polling their copiers. Like you I was a little bit skeptical about running this system that is designed to pull data from devices and ship it out to parties effectively unknown. Depending on the vendor, and the make of the copiers, the devices may have their own 'call-home' mechanism. Our Canon MFPs have a call-home mechanism built in, and we have set up a local proxy server that allows them outbound access to the canon server for call-home (and *only* that server) A couple other options that you could have is to set up an isolated server for FMAudit, and throw it behind a firewall that only allows it access to the specific printers. Or to set up a local monitoring system (Nagios is my go-to) and ship reports from it to your vendor on an ongoing basis Frank On Wed, Apr 17, 2019 at 5:49 PM Barton, Robert W. <bartonrt () lewisu edu> wrote:
Dale, Thanks. I had some of that. But, I was really hoping to setup a ‘filter’ as to only send the service provider the copier’s they support. I think this tool could be helpful for our Service Desk, which would need access to all the printers/copiers. I will review the PDF. Robert W. Barton Executive Director of Information Security and Policy Lewis University One University Parkway Romeoville, IL 60446-2200 815-836-5663 *From:* The EDUCAUSE Security Community Group Listserv < SECURITY () LISTSERV EDUCAUSE EDU> *On Behalf Of *Dale Lee *Sent:* Wednesday, April 17, 2019 4:47 PM *To:* SECURITY () LISTSERV EDUCAUSE EDU *Subject:* Re: [SECURITY] FMAudit Robert, We run FMAudit on our windows print server. It communicates to the printer devices via SNMP for collection, then to the service provider on port 80/443. You could lock the internet outbound (N-S) to the range of the provider, and limit the local traffic (E-W) to only SNMP. I was able to find a FMAudit white paper at http://www.cannon4.com/products/software/pdf/fmaudit/FMA_Tech_White_Paper.pdf Dale Lee *From:* The EDUCAUSE Security Community Group Listserv < SECURITY () LISTSERV EDUCAUSE EDU>*On Behalf Of *Barton, Robert W. *Sent:* Wednesday, April 17, 2019 2:31 PM *To:* SECURITY () LISTSERV EDUCAUSE EDU *Subject:* [SECURITY] FMAudit This message was sent from outside the university. Do not click on links or open attachments unless you recognize the source of this email and know the content is safe. We have vendor that wants us to use FMAudit for our printer fleet. I’m not finding security information on it. Does anybody have experience with it? I’m hoping to limit the data sent to their central server, and I THINK I can use a group to do that, but I need more information. Anything could help. Robert W. Barton Executive Director of Information Security and Policy Lewis University One University Parkway Romeoville, IL 60446-2200 815-836-5663 This message (including any attachments) is intended only for the use of the individual or entity to which it is addressed and may contain information that is non-public, proprietary, privileged, confidential, and exempt from disclosure under applicable law or may constitute as attorney work product. If you are not the intended recipient, you are hereby notified that any use, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this communication in error, notify us immediately by telephone at (815)-836-5950 and (i) destroy this message if a facsimile or (ii) delete this message immediately if this is an electronic communication. Thank you. This message (including any attachments) is intended only for the use of the individual or entity to which it is addressed and may contain information that is non-public, proprietary, privileged, confidential, and exempt from disclosure under applicable law or may constitute as attorney work product. If you are not the intended recipient, you are hereby notified that any use, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this communication in error, notify us immediately by telephone at (815)-836-5950 and (i) destroy this message if a facsimile or (ii) delete this message immediately if this is an electronic communication. Thank you.
-- Frank Barton, MBA Security+, ACMT, MCP IT Systems Administrator Husson University
Current thread:
- FMAudit Barton, Robert W. (Apr 17)
- Re: FMAudit Dale Lee (Apr 17)
- Re: FMAudit Barton, Robert W. (Apr 17)
- Re: FMAudit Frank Barton (Apr 18)
- Re: FMAudit Barton, Robert W. (Apr 17)
- Re: FMAudit Dale Lee (Apr 17)