Subject: Re: [suse-security] limited remote print server
Does anyone know of any docs on giving machines with certain ips the ability to print remotely while blocking all others? I've never set such a thing up and I'm not sure I'm asking the right question..my boss is asking me about this.
Hi Ben, good to see you!
check /etc/hosts.[allow|deny] to block|enable certain services for hosts to name.
None of the lpd packages on a SuSE are using these files (they are not
compiled with libwrap support). The next SuSE distribution will be. Patch
for lprold below.
Without this patch, you might have to use kernel packet filter rules.
Greetings,
Roman.
diff -ruN lpr-0.48.orig/lpd/Makefile lpr-0.48/lpd/Makefile
--- lpr-0.48.orig/lpd/Makefile Mon Jan 28 21:51:57 2002
+++ lpr-0.48/lpd/Makefile Mon Jan 28 21:52:22 2002
@@ -1,3 +1,4 @@
+LDLIBS = -lcommon -L ../common_source -lwrap
all: lpd
lpd: lpd.o lpdchar.o printjob.o recvjob.o
diff -ruN lpr-0.48.orig/lpd/lpd.c lpr-0.48/lpd/lpd.c
--- lpr-0.48.orig/lpd/lpd.c Thu Jan 6 21:42:48 2000
+++ lpr-0.48/lpd/lpd.c Mon Jan 28 21:52:51 2002
@@ -68,6 +68,9 @@
#include "lp.h"
#include "pathnames.h"
+#include