UConn and many other universities were recently victims of a network attack where unrestricted, Internet accessible printers were remotely activated and used to print offensive propaganda. ITS has evaluated the broad need for this level of access and found that it is generally not required. Typically, access to printers via TCP port 9100 is intended for internal use, and external access is often unintended. As a matter of defense, we have decided to protect Internet-accessible printers with a global network policy that will restrict external access. We will work directly with institutional areas that have identified use cases for this access to ensure they experience no business interruptions.