G'day, I got this bug report yesterday and thought I would pass it on. The problem is that lprng with its default lpd.perms allongs anyone who can reach you to be able to print on your printers. I'm not sure this is such a good idea. Any comments about this? Also what would be the best way to fix this without breaking things. Unfortuntely I don't think REJECT SERVICE=X FORWARD would work. ----- Forwarded message from John Goerzen <[EMAIL PROTECTED]> ----- The potato version of this package installs a lpd.perms that, while it does restrict the ability of people to run lpc on the system, does however allow any person to print to any printer on the machine on which it is installed, by default. This is very bad -- no package should open up local hardware to world write like this. ----- End forwarded message ----- -- Craig Small VK2XLZ GnuPG:1C1B D893 1418 2AF4 45EE 95CB C76C E5AC 12CA DFA5 Eye-Net Consulting http://www.eye-net.com.au/ <[EMAIL PROTECTED]> MIEEE <[EMAIL PROTECTED]> Debian developer <[EMAIL PROTECTED]> ----------------------------------------------------------------------------- If you need help, send email to [EMAIL PROTECTED] (or lprng-requests or lprng-digest-requests) with the word 'help' in the body. For the impatient, to subscribe to a list with name LIST, send mail to [EMAIL PROTECTED] with: | example: subscribe LIST <mailaddr> | subscribe lprng-digest [EMAIL PROTECTED] unsubscribe LIST <mailaddr> | unsubscribe lprng [EMAIL PROTECTED] If you have major problems, send email to [EMAIL PROTECTED] with the word LPRNGLIST in the SUBJECT line. -----------------------------------------------------------------------------
