http://bugzilla.novell.com/show_bug.cgi?id=551282
http://bugzilla.novell.com/show_bug.cgi?id=551282#c20
Johannes Meixner changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|REOPENED |NEEDINFO
Info Provider| |pagan13@estreet.com
--- Comment #20 from Johannes Meixner 2009-12-03 08:22:40 UTC ---
There is no bug in saned.
There is no "previous version that is not broken".
It worked and works all the time this way.
You just cannot do scanning via network in an
untrusted network environment.
With "cannot" I mean that of course you "can"
but then without any security because - see "man saned":
saned is not intended to be exposed
to ... non-trusted networks
Even if with a huge amount of effort, the saned authors
at the SANE project might enhance saned to run secure
even in an untrusted network environment
(this would in particular require SSL/TLS encrypted
communication to avoid that others could eavesdrop
on the scanning data to sniff secret image data),
it would not make much sense because scanning documents
requires physical scanner access but it does not make
much sense to permits physical hardware access
in an untrusted network environment.
There is also no bug in our firewall.
Scanning via network works well for me and for others
provided the firewall is correctly set up.
When before the update, network scanning worked
but no longer after the update, the only reason
is here from what I can see from the above comments
that after the update your firewall runs
but it did not run before the update.
Because you wrote things like
---------------------------------------------------------------
"External Zone" is anything outside the computer.
"Internal Zone" is anything inside the computer.
..
Saned is supposed to set TCP 6566 in the external zone.
---------------------------------------------------------------
which do not make any sense at all,
my assumption is that all what you actually need
is an understanding how the firewall works.
Therefore I wrote comment #17.
Again:
There is no bug in the software so that I cannot
fix anything in the software here so that for the
software the bug is still invalid.
Please do not misunderstand me.
For a normal user it is perfectly o.k. not to understand
particular complicated stuff like a firewall.
In this case there should be at least sufficient
documentation how to set up the firewall.
I don't know our firewall documentation (because I never
read it because firewall setup works for my needs).
Therefore again my question:
Do you need documentation how to set up the firewall
so that scanning via network works in a trusted
internal network?
--
Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.