Package: debian-edu-config Version: 1.818 Severity: important
The Debian Edu jessie setup faces an issue observed on old SUSE systems: http://lists.opensuse.org/opensuse-bugs/2009-10/msg01060.html Quoting from there... """ [...] However when visiting http://<hostname>:631/admin/ it redirects to https://<ipaddress>:631/admin ie the browser will complain [...] """In the Debian Edu case, the browser complains about the proxy rejecting the connection to 10.0.2.2.
By policy, we only allow direct machine access within 10.0.0.0/8 if the access is done via a URL with a proper hostname.
I'd say we should avoid adding 10.0.2.2 or any other networks to wpad.dat (which silencing the above issue would require).
The better solution is teaching CUPS not to https-redirect to TJENER's IP address, but to a valid hostname (i.e. FQDN, tjener.intern).
This can easily be done in cupsd.conf by setting """ HostNameLookups On (default: Off). """ I will commit that change soon to d-e-c master and jessie branches. Greets, Mike -- DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby fon: +49 (1520) 1976 148 GnuPG Key ID 0x25771B31 mail: [email protected], http://das-netzwerkteam.de freeBusy: https://mail.das-netzwerkteam.de/mailxchange/kronolith/fb.php?u=m.gabriel%40das-netzwerkteam.de
pgpMWPQ7pkKsn.pgp
Description: Digitale PGP-Signatur
