On Sun, Jul 16, 2000 at 08:15:05PM -0400, Garrett Wollman wrote:
> <<On Sun, 16 Jul 2000 16:46:58 -0400, Christopher Masto <[EMAIL PROTECTED]> said:
>
> > Huh? Security through ignorance?
>
> Remember that `lpr' is setuid-root and uses a ``privileged'' port for
> its communications. Many sites may still be using trusted-host
> ``authentication'' internally, and LPRng's ``feature'' may enable a
> compromise of some such service. (Got enough scare quotes there?)
That is indeed something I failed to consider. I suppose it would be
necessary to have some control over that feature in some environments.
I just find it incredibly convenient to be able to install LPRng on
a bunch of client machines and just rm /etc/printcap, set $PRINTER,
and be done with it.
--
Christopher Masto Senior Network Monkey NetMonger Communications
[EMAIL PROTECTED] [EMAIL PROTECTED] http://www.netmonger.net
Free yourself, free your machine, free the daemon -- http://www.freebsd.org/
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
