|
-
September 24th, 2004, 10:49 AM
#1
Registered User
Secure Internet Printing???
Quick question?
Is IPP a secure way to print over the Internet?
Basically, we are going through a remote working project here with Thin Clients accesing a Citrix NFuse system over a broadband connection. We need a way for the users to be able to print which I can get working by external ip addresses and port forwarding on routers but this means the print job isn't encrypted on its way to the printer over the internet.
I know I can create a VPN in but we want to move away from this as we might be getting upwards of 200 remote users so I don't want to do a VPN for each.
We were gonna have Citrix autocreate local printers but we have had loads of probs in the past with this.
Can we get a way to get the Thin Clients to auto create a locally connected printer which pops up in the NFuse session even though NFuse is set not to auto create local printers??
Alternativly, is there a way we can securely send print jobs over the web??
Ta!
Follow your dreams. You can reach your goals. I'm living proof. Beef-cake, BEEF-CAKE!!
-
September 24th, 2004, 04:26 PM
#2
Registered User
Figuring out the proper way for them to be installed thru Citrix is your best bet. I never had much problem with HP laser printers thru citrix, but Canons or any kind of inkjet printer was a nightmare.
What type of printers are you dealing with?
-
September 27th, 2004, 02:17 AM
#3
Registered User
 Originally Posted by imaeditedbysowulo
Figuring out the proper way for them to be installed thru Citrix is your best bet. I never had much problem with HP laser printers thru citrix, but Canons or any kind of inkjet printer was a nightmare.
What type of printers are you dealing with?
We have nearly all HP Laser printers here but ithankfully on the remote sites they are all going to be HP LaserJet 2300DN's.
-
September 27th, 2004, 02:24 AM
#4
Geezer
It is required that the Internet Printing Protocol be able to operate
within a secure environment. Wherever possible, IPP ought to make use
of existing security protocols and services. IPP will not invent new
security features when the requirements described in this document can
be met by existing protocols and services. Examples of such services
include Secure Sockets (SSL), Digest Access Authentication in HTTP,
and the Content MD-5 Header Field in MIME.
It is difficult to anticipate the security risks that might exist in
any given IPP environment. For example, if IPP is used within a given
corporation over a private network, the risks of exposing print data
may be low enough that the corporation will choose to not use
encryption on that data. However, if the connection between the
client and the Printer is over a public network, the client may wish
to protect the content of the information during transmission through
the network with encryption.
The guys who designed it don't seem to think its very secure in itself, that pretty much says to me its dependent on what you run it inside, as to how secure it is - from here
So yeah citrix client printing then  , especially if you've only got to figure out how to do one kind of printer..
-
September 27th, 2004, 02:34 AM
#5
Registered User
Originally Posted by confus-ed
The guys who designed it don't seem to think its very secure in itself, that pretty much says to me its dependent on what you run it inside, as to how secure it is - from here
So yeah citrix client printing then , especially if you've only got to figure out how to do one kind of printer..
Thanks. Looks like for now we'll have to got down the individual VPN routes just to get secure printing.  Oh well.
Thanks for your help guys.. 
-
September 27th, 2004, 03:17 AM
#6
Geezer
How many locations btw ? can't some share ? then you just need a vpn to each place ?
Or even a lightweight print server(s) ? (I dunno how practical any of this is without knowing the 'spread' - so they might all be rubbish ideas !  )
-
September 27th, 2004, 03:34 AM
#7
Registered User
Originally Posted by confus-ed
How many locations btw ? can't some share ? then you just need a vpn to each place ?
Or even a lightweight print server(s) ? (I dunno how practical any of this is without knowing the 'spread' - so they might all be rubbish ideas ! )
We are rolling out home working for a large number of users (potentially 100+ by the end of the year) with more next year. The company are not allowing them to use there own home PCs even though we have NFuse in and all they would need to do is connect via a web browser. So they are being forced to have Thin Clients, Printers, TFT screens and desks etc seperate to any home equipment they have.
If we could enable citrix local printer creation it would be a doddle but we can't because of the problems we've had in the past with it and the Citrix bods not being able to solve the issues (lack of time).
Follow your dreams. You can reach your goals. I'm living proof. Beef-cake, BEEF-CAKE!!
-
September 27th, 2004, 03:52 AM
#8
Geezer
-
September 27th, 2004, 04:32 AM
#9
Registered User
Originally Posted by confus-ed
I think I feel forced to agree with your implication & say thats a silly idea !  .. but I ain't signing the cheques or in a position to tell the citrix dudes to 'get their act together' either !   !!
Nice to see that somone agrees with me for a change You can tell the bosses its the wrong way to do things till your blue in the face but they never listen :butt:
Funny how this world works ain't it!
-
September 27th, 2004, 04:58 AM
#10
Geezer
Originally Posted by Andy Roberts
Nice to see that somone agrees with me for a change You can tell the bosses its the wrong way to do things till your blue in the face but they never listen :butt:
Does this sum it up for you ?  ? ..
I see the Technichally Challenged leading the chequebook obscured all the time, its like a disease in the industry..
If I had just a pound for how many times I've heard 'I said that when we were planning it' from some tech who wasn't listened to I'd be rich !
-
September 27th, 2004, 07:45 AM
#11
Registered User
Originally Posted by confus-ed
Does this sum it up for you ?  ? ..
I see the Technichally Challenged leading the chequebook obscured all the time, its like a disease in the industry..
If I had just a pound for how many times I've heard 'I said that when we were planning it' from some tech who wasn't listened to I'd be rich !
So true.....
The thing that has tipped this on its head is that we already have an agreed remote working setup and spec and now at the last minute my boss goes "why isn't this wireless?? Its always been a wireless setup so make it wireless now!" You tell him it'll take a bit to make sure its all setup OK and that the wireless security is tight <cough> and you get "thats b****cks, I set my wireless router up at home in 10 minutes and thats solid secure!" 
You know its no point arguing that one ...... 
Follow your dreams. You can reach your goals. I'm living proof. Beef-cake, BEEF-CAKE!!
Similar Threads
-
By 70-240 in forum Certification
Replies: 14
Last Post: February 20th, 2012, 03:35 AM
-
By TechZ in forum Tech Lounge & Tales
Replies: 0
Last Post: August 11th, 2004, 03:26 PM
-
By davepoet in forum Tech-To-Tech
Replies: 14
Last Post: July 16th, 2004, 06:44 AM
-
By gazzak in forum Tech-To-Tech
Replies: 3
Last Post: March 3rd, 2003, 11:12 AM
-
By pochrist1 in forum Other Software Applications
Replies: 0
Last Post: November 23rd, 2002, 05:05 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
Bookmarks