[cups.bugs] [LOW] STR #2491: Job files created without permission for CUPS user to read.
mike at easysw.com
Fri Aug 24 13:56:48 PDT 2007
[STR Closed w/o Resolution]
Job control files (cNNNNN) aren't supposed to be readable by the "lp" user
for security reasons. If you have a filter that wants to access to them,
it has to do an IPP request to ask for the attribute(s) it are interested
in - it cannot read the file directly.
Job data files (dNNNNN-MMM) *are* readable by the "lp" user and are
created mode 0640 in scheduler/client.c.
[Keep in mind that previous Debian releases ran cupsd as "lp", so you'd
never have noticed this issue before...]
Fix Version: None
More information about the cups-devel