[cups.bugs] [LOW] STR #2491: Job files created without permission for CUPS user to read.
Michael Sweet
mike at easysw.com
Fri Aug 24 13:56:48 PDT 2007
[STR Closed w/o Resolution]
Job control files (cNNNNN) aren't supposed to be readable by the "lp" user
for security reasons. If you have a filter that wants to access to them,
it has to do an IPP request to ask for the attribute(s) it are interested
in - it cannot read the file directly.
Job data files (dNNNNN-MMM) *are* readable by the "lp" user and are
created mode 0640 in scheduler/client.c.
[Keep in mind that previous Debian releases ran cupsd as "lp", so you'd
never have noticed this issue before...]
Link: http://www.cups.org/str.php?L2491
Version: 1.3.0
Fix Version: None
More information about the cups-devel
mailing list