Thanks for your prompt response. This is exactly what I want. Ashley.
On Thu, 5 Feb 2004, Henrik Edlund wrote: > Date: Thu, 5 Feb 2004 20:26:21 +0100 (CET) > From: Henrik Edlund <[EMAIL PROTECTED]> > To: Ashley Chaloner <[EMAIL PROTECTED]> > Cc: [EMAIL PROTECTED] > Subject: Re: LPRng: Username spoofing with a homemade lpr and -U > > 1) Make sure only you have root on the client workstations > > 2) Have your server only accept connections from port < 1024 > > 3) Suid root your lp/lpr clients (if they aren't already, Solaris > native are) and if needed configure them to use a source port below > 1024 when connecting (no configuration needed with Solaris native clients) > > 4) As only your trusted client programs can talk to the server and the -U > switch is nonexistant or disabled, the lp/lpr client program puts the > calling users username in the controlfile it sends to the server. -- Sick of all those Windows viruses, worms and trojans? Get the best anti-virus software going: Linux. Win32 Worm List: http://www.sophos.com/virusinfo/analyses/index_w32worm.html Linux Worm List: http://www.sophos.com/virusinfo/analyses/index_linuxworm.html Score: Linux - 40 ; Windows - 2600 ----------------------------------------------------------------------------- YOU MUST BE A LIST MEMBER IN ORDER TO POST TO THE LPRNG MAILING LIST The address you post from MUST be your subscription address If you need help, send email to [EMAIL PROTECTED] (or lprng-requests or lprng-digest-requests) with the word 'help' in the body. For the impatient, to subscribe to a list with name LIST, send mail to [EMAIL PROTECTED] with: | example: subscribe LIST <mailaddr> | subscribe lprng-digest [EMAIL PROTECTED] unsubscribe LIST <mailaddr> | unsubscribe lprng [EMAIL PROTECTED] If you have major problems, send email to [EMAIL PROTECTED] with the word LPRNGLIST in the SUBJECT line. -----------------------------------------------------------------------------
