From owner-freebsd-questions Thu Dec 19 20: 6:18 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9616437B401 for ; Thu, 19 Dec 2002 20:06:16 -0800 (PST) Received: from truman.datasphereweb.com (12-231-81-122.client.attbi.com [12.231.81.122]) by mx1.FreeBSD.org (Postfix) with SMTP id B6B8D43EDC for ; Thu, 19 Dec 2002 20:06:12 -0800 (PST) (envelope-from ryallsd@datasphereweb.com) Received: (qmail 44285 invoked from network); 20 Dec 2002 04:06:12 -0000 Received: from 12-229-238-38.client.attbi.com (HELO bartxp) (12.229.238.38) by 12-231-81-122.client.attbi.com with SMTP; 20 Dec 2002 04:06:12 -0000 From: "Derrick Ryalls" To: Subject: RE: Cups vulnerability (ala Slashdot) Date: Thu, 19 Dec 2002 20:06:00 -0800 Message-ID: <000001c2a7dd$1e2b9960$0200a8c0@bartxp> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.4024 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 In-Reply-To: Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG=20 > [mailto:owner-freebsd-questions@FreeBSD.ORG] On Behalf Of Steven Lake > Sent: Thursday, December 19, 2002 7:03 PM > To: questions@FreeBSD.ORG > Subject: Cups vulnerability (ala Slashdot) >=20 >=20 > Hi all. Just checking in with the experts. Read about=20 > this potential root exploit vulnerability on slashdot about=20 > the CUPS printing system in unix and wanted to see if it was=20 > anything to worry about or no. >=20 > Here's the advisory: http://www.idefense.com/advisory/12.19.02.txt >=20 > Just being sure that it won't affect me. If I have=20 > samba setup to do print serving, would this affect me? >=20 don't know if you would be affected, but this is what I would have listed in /etc/hosts.allow: cupsd : localhost 127.0.0.1 : allow cupsd : 192.168. : allow cupsd : 10. : allow cupsd : all : deny This allows localhost and all internal ips to use it, but nothing else. You can lock it down even tighter, but this gives you the general idea. >=20 >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message >=20 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message