RE: Printer jobs hijacking

From: Paul Melson (pmelson@gmail.com)
Date: Mon Nov 27 2006 - 12:50:27 EST

• Next message: Erin Carroll: "New article on SecurityFocus: Vulnerability Scanning Web 2.0 Client-Side Components"
• Previous message: Marco Ivaldi: "Re: Voip security"
• In reply to: Frank Bussink: "Printer jobs hijacking"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

-----Original Message-----
Subject: Printer jobs hijacking

> What would be the approach ? or tools ? (something like a tcpreplay ???)

If you just want to decode print jobs, the PC -> printer payloads should
just be raw print files. Save the sessions with tcpflow and extract the
payloads to a file. Then you just need a program that can view the raw
postscript or PCL file. More on that here:

http://www.securityfocus.com/archive/91/409156/30/240/threaded

PaulM

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

• Next message: Erin Carroll: "New article on SecurityFocus: Vulnerability Scanning Web 2.0 Client-Side Components"
• Previous message: Marco Ivaldi: "Re: Voip security"
• In reply to: Frank Bussink: "Printer jobs hijacking"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:22 EDT