[cups.bugs] A DOS attack is so easy
Johannes Meixner
jsmeix at suse.de
Tue Aug 29 03:44:44 PDT 2006
Hello,
On Aug 26 12:01 Christian wrote (shortened):
> So everyone that print a file (corrupted or dont) can let
> all company without printing.
In general it is almost impossible to avoid this.
I.e. you must trust your users of your printers.
But this is no big problem because when you allow someone
to print to your printer, you allow that he has more or less
full control over your printer.
For example print a tiny (non-corrupted) PostScript snippet like:
------------------------------------------------------------------
%!PS
{ } Loop
------------------------------------------------------------------
It will hang up any PostScript interpreter (either Ghostscript
or the PostScript interpreter in a PostScript printer)
in an endless loop which prevents any further job processing
until the PostScript interpreter is reset.
Similar:
With something like "cat /dev/urand0m >/tmp/somefile"
your users can usually fill up your disk space and it is
also easy that your users fill up your network bandwidth
and so on...
Kind Regards
Johannes Meixner
--
SUSE LINUX Products GmbH, Maxfeldstrasse 5 Mail: jsmeix at suse.de
90409 Nuernberg, Germany WWW: http://www.suse.de/
More information about the cups-devel
mailing list