Am Mittwoch, 23. Mai 2012, 15:08:07 schrieb Johannes Meixner:
On May 23 14:14 Stefan Quandt wrote (excerpt):
* Are there any use cases missing? Canceling print jobs.
By default a user can cancel his own print jobs on his local host according to the CUPS "default" policy in /etc/cups/cupsd.conf but even more:
Only FYI (of course not obvious for average users):
normal_user@host $ cancel -U root queue_name-job_number I can confim that canceling via command line as 'root' indeed just works (on localhost, without password).
But trying to cancel using the cups browser frontend (via "http://localhost:631/jobs?") I'm prompted for a username _and_ password. And of course practically every user without knowledge of cups policies will enter his normal user name and thus will fail. And entering 'root' with no password is not accepted by the dialog. So while this is a severe problem, it is not about openSUSE security policies, but a longstanding issue of the cups frontend (and maybe there is already a report for this). Am Mittwoch, 23. Mai 2012, 14:50:32 schrieb Carlos E. R.:
On 2012-05-23 14:32, Andreas Jaeger wrote:
On Wednesday, May 23, 2012 14:14:36 Stefan Quandt wrote:
Am Dienstag, 22. Mai 2012, 14:48:12 schrieb Andreas Jaeger:
Call for action: Review and discuss http://en.opensuse.org/openSUSE:Security_use_cases using the following questions: * Are there any use cases missing? Canceling print jobs. Strange, in my environment I can cancel my own printjobs... This should indeed work. And in mine. It is a configuration in cups. Do you use the 'cancel' command too or which frontend?
Thanks Stefan Q. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org