chip@pender.ee.upenn.edu (Charles H. Buchholtz) (12/07/89)
Thanks to all who responded, especially: Jonathan Moore Email: moorej@sask.usask.CA Aydin Edguer Email: edguer@curie.ces.cwru.edu Rich Haller Email: RHALLER@oregon.uoregon.edu Jeff White Email: jeff@seas.upenn.edu There were four solutions offered: 1) Physical security - Keep the LaserWriters in a locked room, attach "vending machine" (coin op or mag stripe) hardware to the Laser Writers, etc. (Unfortunately, I forgot who offered these suggestions.) 2) Divide the network into separate zones, and configure gateways so that users can only "see" the resources they are allowed to use. (Rich Haller) 3) Use lwsrv and papif (the CAP suite) to turn a mainframe into a Print Spooler. Have the spooler do authorization checking based on the choosername. (Jonathon Moore, Jeff White) 4) Same as (3), but having the spooler check the node number instead. (Aydin Edguer) Obviously, these techniques could be combined for increased security. Charles H. Buchholtz chip@ee.upenn.edu Systems Programmer (215) 898-2284 Department of Electrical Engineering 200 S. 33rd St, rm 328 University of Pennsylvania Philadelphia, PA 19104