Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

cupsctl wrongly edits cupsd.conf for options from cups-files.conf #5530

Closed
OdyX opened this issue Feb 24, 2019 · 3 comments
Closed

cupsctl wrongly edits cupsd.conf for options from cups-files.conf #5530

OdyX opened this issue Feb 24, 2019 · 3 comments
Assignees
@michaelrsweet
Labels
enhancement New feature or request
Milestone
CUPS 2.2.x Updates

Comments

@OdyX
Copy link
Contributor

OdyX commented Feb 24, 2019

Paul Menzel reported in https://bugs.debian.org/923115 that cupsctl edits /etc/cups/cupsd.conf instead of /etc/cups/cups-files.conf for the options that should live in the latter:

/etc$ /usr/sbin/cupsctl FileDevices=No
/etc$ sudo git diff
diff --git a/cups/cupsd.conf b/cups/cupsd.conf
index 02afed2..c347852 100644
--- a/cups/cupsd.conf
+++ b/cups/cupsd.conf
@@ -119,3 +119,4 @@ WebInterface Yes
     Order deny,allow
   </Limit>
 </Policy>
+FileDevice Yes
@michaelrsweet
Copy link
Collaborator

Well, cupsctl only edits settings in the cupsd.conf file, since cups-files.conf is not externally editable for security reasons.

I will look into blacklisting cups-files.conf directives, however cupsd will (helpfully?) throw an error if you do this already...

@michaelrsweet michaelrsweet self-assigned this Feb 25, 2019
@michaelrsweet michaelrsweet added the enhancement New feature or request label Feb 25, 2019
@michaelrsweet michaelrsweet added this to the Future milestone Feb 25, 2019
@michaelrsweet
Copy link
Collaborator

Moving to CUPS 2.2.x/2.3.x since this could cause a DoS if cupsd is configured to fail with unrecognized directives.

michaelrsweet added a commit that referenced this issue May 15, 2019
@michaelrsweet
Block cups-files.conf directives (Issue #5530)
20c9da8
michaelrsweet added a commit that referenced this issue May 15, 2019
@michaelrsweet
Block cups-files.conf directives (Issue #5530)
a0096a2
@michaelrsweet
Copy link
Collaborator

[master 20c9da8] Block cups-files.conf directives (Issue #5530)

[branch-2.2 a0096a2] Block cups-files.conf directives (Issue #5530)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@michaelrsweet michaelrsweet

Labels
enhancement New feature or request
Projects
None yet
Milestone
CUPS 2.2.x Updates
Development

No branches or pull requests
2 participants
@OdyX @michaelrsweet