Re: Connect to lpd on insecure port
> From [EMAIL PROTECTED] Mon May 8 07:17:19 2000 > Date: Mon, 8 May 2000 16:16:49 +0200 (CEST) > From: Konrad Heuer <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Connect to lpd on insecure port > > > Today I did some testing concerning lpd and I was very astonished to see > that lpd accepts jobs also from insecure ports (violating RFC 1179). It > does not accept such jobs on 2.1.6-RELEASE (yes, I still have some old 386 > system out there with 2.1.6) but it does on 3.x (and as far as I've seen > from the code) and 4.x and also on 2.2.6. > > Why and when has the behaviour of lpd been changed? I'd like lpd only to > accept connections from secure ports (do you remember the famous error > message `Malformed from address'? ;-) ) > > Thanks for any reply! > > Konrad HeuerPersonal Bookmarks: > Gesellschaft für wissenschaftliche >Datenverarbeitung mbH GÖttingen http://www.freebsd.org > Am Faßberg, D-37077 GÖttingen http://www.daemonnews.org > Deutschland (Germany) > > [EMAIL PROTECTED] > > > > To Unsubscribe: send mail to [EMAIL PROTECTED] > with "unsubscribe freebsd-hackers" in the body of the message > The LPRng print spooler has this functionality. You can read the horrible nasty details about why there is this functionality in the LPRng HOWTO document in the LPRng distribution. Patrick Powell To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Re: Connect to lpd on insecure port
On Mon, 8 May 2000, Konrad Heuer wrote: > > Today I did some testing concerning lpd and I was very astonished to see > that lpd accepts jobs also from insecure ports (violating RFC 1179). It > does not accept such jobs on 2.1.6-RELEASE (yes, I still have some old 386 > system out there with 2.1.6) but it does on 3.x (and as far as I've seen > from the code) and 4.x and also on 2.2.6. > Why and when has the behaviour of lpd been changed? I'd like lpd only to > accept connections from secure ports (do you remember the famous error > message `Malformed from address'? ;-) ) I think that particular message is why the change came about. Also pure usability -- it's awfully hard to submit a job from a priviledged port as a user, and I don't want to submit jobs as root. If you don't like it, that's what ipfw is for. :) Doug White| FreeBSD: The Power to Serve [EMAIL PROTECTED] | www.FreeBSD.org To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
Connect to lpd on insecure port
Today I did some testing concerning lpd and I was very astonished to see that lpd accepts jobs also from insecure ports (violating RFC 1179). It does not accept such jobs on 2.1.6-RELEASE (yes, I still have some old 386 system out there with 2.1.6) but it does on 3.x (and as far as I've seen from the code) and 4.x and also on 2.2.6. Why and when has the behaviour of lpd been changed? I'd like lpd only to accept connections from secure ports (do you remember the famous error message `Malformed from address'? ;-) ) Thanks for any reply! Konrad HeuerPersonal Bookmarks: Gesellschaft für wissenschaftliche Datenverarbeitung mbH GÖttingen http://www.freebsd.org Am Faßberg, D-37077 GÖttingen http://www.daemonnews.org Deutschland (Germany) [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message