Xerox 4590 EPS-10912 User Manual

Version 50.xx, September 2005701P25380Xerox Document Services Platform SeriesCommon ControllerSecurityGuide

4 Security GuideNOTE: Regardless of the security profile, anonymous FTP is Read-only with restricted access to /export/home/ftphome only.Enable and di

Security Guide 5Table 2-2 “System” tab Table 2-3 “INIT” tab RC2 section System Service DescriptionAllow_host.equiv_plus Background: The /etc/hosts.e

6 Security GuideTable 2-4 “INIT” tab RC3 section Table 2-5 “INETD” tab S73cachefs.daemon Starts cachefs file systemsS73NFS.CLIENT NFS client service

Security Guide 7chargen Character Generator Protocol serverSends revolving pattern of ASCII characters. Sometimes used in packet debugging and can be

8 Security Guiderpc.cmsd Calendar manager service daemonrpc.cmsd is a small database manager for appointment and resource-scheduling data. Its primary

Security Guide 9User level changesThe following user-level changes are made:• all users for at, cron, and batch are disallowed• nuucp account is disab

10 Security GuideMulticast routing disabledMulticast is used to send data to many systems at the same time while using one address.OS and host informa

Security Guide 11Remote CDE login disabledThe Remote CDE login is disabled.DocuSP router capabilities disabledThe DocuSP router capabilities is disabl

12 Security Guideenable-ftp and disable-ftpThese options allow for enabling and disabling FTP alone. You must have FTP enabled when using a Continuous

Security Guide 13Local users and groupsLocal user accounts are constructed based on the Solaris model, with its limitations and restrictions, using th

Prepared by:Xerox CorporationGlobal Knowledge and Language Services800 Philips Road Bldg. 845-17SWebster, New York 14580USA©2005 by Xerox Corporation.

14 Security GuideCreating user accountsThe DocuSP user interface enables the Administrator to manage accounts easily by selecting [Setup], [Users &

Security Guide 15Reprint ManagementEnabled Enabled Enabled No The ”reprint_path” in Security Profile controls the directories that users can reprint.

16 Security GuidePassword security When the system is installed, the Change System Password dialog box appears and prompts users to establish all Syst

Security Guide 17NOTE: Please be aware that Xerox Customer Support Personnel must have access to the new root password for service and support. It is

18 Security GuideLogin Attempts AllowedDocuSP has provided a means to lockout users after reaching the maximum number of consecutive attempts. Once th

Security Guide 19Date/Time User Login/LogoutThis information is kept in the authlog and syslog in the /var/log directory. Login/Logout to DocuSP is tr

20 Security GuideMap the ADS groups to the DocuSP user groupsFrom the Setup menu, Users & Groups option, select the ADS Groups tab. A member of t

Security Guide 21Remote WorkflowRemote Workflow allows for a remote connection to the DocuSP controller.The administrator can limit access through the

22 Security Guide– If not already enabled, click the 'OK' button in the "Information" pop-up box– Click on the 'Add Certifica

Security Guide 23– Click 'Add Certificate'Step 1 - Select "Signed Certificate from a Certificate Authority"Step 2 - Select and ent

Security GuideThis product includes software developed by the Apache Software Foundation (http://www.apache.org/).” SWOP® is a registered trademark of

24 Security GuideNOTE: A self-signed certificate is not as secure as a certificate signed by a Certificate Authority. A self-signed certificate is the

Security Guide 25NOTE: The IP Filtering (Setup->IP Filter) feature can also help in limiting access to the server. This is DocuSP's GUI interf

26 Security GuideRoles and responsibilitiesXerox will make every effort to assist the administrator in ensuring that the customer environment is secur

Security Guide 27the DocuSP. Not all scripts are public knowledge, only those that are public are defined in this document and these can be performed

28 Security GuideOnline Help for securityA great deal of helpful security information can be found in Online Help. Sun's security tools and bluep

Security GuideSecurity Guide

Security Guide iTable of ContentsAbout this guide . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .

ii Security Guide

Security Guide 1IntroductionThe Security Guide provides the information needed to perform system administration tasks for maintaining the Xerox Docume

2 Security Guide• Angle brackets - Variable information that is displayed on your screen is enclosed within angle brackets; for example, “Unable to co

Security Guide 3SecurityThis section describes the DocuSP system-supplied security profiles. It outlines the characteristics of each profile and indic