Re: Lenny CUPS server and etch CUPS client
- From: Rainer Dorsch <rdorsch@xxxxxx>
- Date: Sun, 13 Jul 2008 00:31:06 +0200
Problem solved:
I restarted from the cupsd.conf which came with the current cups package and
found that in a Limit directive the "Order allow,deny" is not a good idea.
Am Sonntag, 6. Juli 2008 schrieb Rainer Dorsch:
<Limit All>
# Order deny,allow
Order allow,deny
</Limit>
This is my working cupsd.conf:
blackbox:/etc/cups# cat /etc/cups/cupsd.conf
#
#
# Sample configuration file for the Common UNIX Printing System (CUPS)
# scheduler. See "man cupsd.conf" for a complete description of this
# file.
#
# Log general information in error_log - change "info" to "debug" for
# troubleshooting...
LogLevel debug2
# Administrator user group...
SystemGroup lpadmin
#ServerAdmin rdorsch@xxxxxx
# Only listen for connections from the local machine and the ethernet
Listen *:631
Listen /var/run/cups/cups.sock
# Show shared printers on the local network.
Browsing On
BrowseOrder allow,deny
BrowseAllow all
# Default authentication type, when authentication is required...
DefaultAuthType Basic
# Restrict access to the server...
<Location />
Order allow,deny
# Allow @LOCAL
Allow from 192.168.0.0/16
</Location>
# Restrict access to the admin pages...
<Location /admin>
Order allow,deny
</Location>
# Restrict access to configuration files...
<Location /admin/conf>
AuthType Default
Require user @SYSTEM
Order allow,deny
</Location>
# Set the default printer/job policies...
<Policy default>
# Job-related operations must be done by the owner or an administrator...
<Limit Send-Document Send-URI Hold-Job Release-Job Restart-Job Purge-Jobs
Set-Job-Attributes Create-Job-Subscription Renew-Subscription
Cancel-Subscription Get-Notifications Reprocess-Job Cancel-Current-Job
Suspend-Current-Job Resume-Job CUPS-Move-Job>
Require user @OWNER @SYSTEM
Order deny,allow
</Limit>
# All administration operations require an administrator to authenticate...
<Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer CUPS-Add-Modify-Class
CUPS-Delete-Class CUPS-Set-Default>
AuthType Default
Require user @SYSTEM
Order deny,allow
</Limit>
# All printer operations require a printer operator to authenticate...
<Limit Pause-Printer Resume-Printer Enable-Printer Disable-Printer
Pause-Printer-After-Current-Job Hold-New-Jobs Release-Held-New-Jobs
Deactivate-Printer Activate-Printer Restart-Printer Shutdown-Printer
Startup-Printer Promote-Job Schedule-Job-After CUPS-Accept-Jobs
CUPS-Reject-Jobs>
AuthType Default
Require user @SYSTEM
Order deny,allow
</Limit>
# Only the owner or an administrator can cancel or authenticate a job...
<Limit Cancel-Job CUPS-Authenticate-Job>
Require user @OWNER @SYSTEM
Order deny,allow
</Limit>
<Limit All>
Order deny,allow
# Order allow,deny
</Limit>
</Policy>
#
#
blackbox:/etc/cups#
--
Rainer Dorsch
Lärchenstr. 6
D-72135 Dettenhausen
07157-734133
email: rdorsch@xxxxxx
jabber: rdorsch@xxxxxxxxxx
GPG Fingerprint: 5966 C54C 2B3C 42CC 1F4F 8F59 E3A8 C538 7519 141E
Full GPG key: http://pgp.mit.edu/
--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx
- References:
- Lenny CUPS server and etch CUPS client
- From: Rainer Dorsch
- Lenny CUPS server and etch CUPS client
- Prev by Date: Re: Re[2]: Video Adapter intel965
- Next by Date: Re: Firefox not showing in Applications menus
- Previous by thread: Re: Lenny CUPS server and etch CUPS client
- Next by thread: [Sidux] AMD Sempron 64 bit kernel (Gateway laptop)?
- Index(es):
Relevant Pages
|
