Re: LPD: Summary, fury and more

From: Scott Gifford (sgifford@suspectclass.com)
Date: 10/11/01


To: "Sanjeev B.S." <sanjeev@mbu.iisc.ernet.in>
Subject: Re: LPD: Summary, fury and more
From: Scott Gifford <sgifford@suspectclass.com>
Date: 11 Oct 2001 16:23:13 -0400
Message-ID: <lyd73uorim.fsf@gfn.org>


"Sanjeev B.S." <sanjeev@mbu.iisc.ernet.in> writes:

> I would like to summerise the responses I got for my earlier
> question regarding vulnerability of lpd(LPRng), which finally meant
> something like, 'Is it possible to make lpd accessible only from
> console of Redhat 7.1?'. Here the responses are:

Sorry for coming in late on this, but you might want to see if the
patch attached to:

    https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=38850

helps. It lets you specify a single interface to listen on (such as
127.0.0.1), or have lpd not listen on a TCP socket at all, which lets
you just use it for printing without anybody else being able to
connect to it. I think this is what you want.

Good luck,

----ScottG.



Relevant Pages

  • CERT Advisory CA-2001-30 Multiple Vulnerabilities in lpd
    ... CERT Advisory CA-2001-30 Multiple Vulnerabilities in lpd ... The line printer daemon enables various ... intruder to gain root access to the lpd server. ... order for an intruder to exploit this vulnerability. ...
    (Cert)
  • CERT Advisory CA-2001-30 Multiple Vulnerabilities in lpd
    ... CERT Advisory CA-2001-30 Multiple Vulnerabilities in lpd ... The line printer daemon enables various ... intruder to gain root access to the lpd server. ... order for an intruder to exploit this vulnerability. ...
    (Cert)
  • [UNIX] Multiple Vulnerabilities in lpd
    ... Multiple Vulnerabilities in lpd ... The line printer daemon enables various clients to ... An intruder can send a specially crafted print job to ... for an intruder to exploit this vulnerability. ...
    (Securiteam)
  • Re: xerox phaser 3117 with rhel4 status ??
    ... Thanx for sparing your time. ... But no luck it seems that it is for LPD not for cups. ... Redhat Channel Partner and Training Partner ...
    (RedHat)