http://bugzilla.novell.com/show_bug.cgi?id=543549 Summary: CUPS 'Browsing Mode' is enabled by default Classification: openSUSE Product: openSUSE 11.2 Version: Milestone 8 Platform: All OS/Version: SuSE Other Status: NEW Severity: Normal Priority: P5 - None Component: Printing AssignedTo: jsmeix@novell.com ReportedBy: thomas@cupracer.de QAContact: jsmeix@novell.com Found By: --- User-Agent: Mozilla/5.0 (X11; U; Linux i686; de; rv:1.9.0.14) Gecko/2009090900 SUSE/3.0.14-0.1.2 Firefox/3.0.14 I'm thinking about the following issue whenever I install a fresh openSUSE, so I think that it's time for a bug report: While setting up CUPS within the installation an configuration procedure, I stumble over the 'Browsing Mode', which is enabled by default. I think that it should be disabled, so that there's no interchange between the local and a remote CUPS server. Surely, there's a SuSEFirewall that prevents the communication, but if the firewall is turned off, the communication begins. In fact, an attacker could provide our local CUPS with wrong information to get copies of secret documents (or whatever). The user should enable this option explicitely if he's interested in this feature. openSUSE 11.2 M8 even has the sshd disabled by default. So why should there still exist a network-activated daemon that is able to modify the systems configuration (= list of printers) without making the user aware of it? Reproducible: Always Steps to Reproduce: 1. install openSUSE 11.2 (build0307) up to "hardware configuration" 2. select "Printer" to start the CUPS configuration 3. select ~ "network printing" and find the Browsing mode option (Sorry, currently I just have the german version installed an don't know the right translation for these menus) Actual Results: Browsing Mode is turned on by default. Expected Results: Browsing Mode should be turned off by default. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.