[cups.bugs] [LOW] STR #2491: Job files created without permission for CUPS user to read.

Michael Sweet mike at easysw.com
Fri Aug 24 13:56:48 PDT 2007

[STR Closed w/o Resolution]

Job control files (cNNNNN) aren't supposed to be readable by the "lp" user
for security reasons. If you have a filter that wants to access to them,
it has to do an IPP request to ask for the attribute(s) it are interested
in - it cannot read the file directly.

Job data files (dNNNNN-MMM) *are* readable by the "lp" user and are
created mode 0640 in scheduler/client.c.

[Keep in mind that previous Debian releases ran cupsd as "lp", so you'd
never have noticed this issue before...]

Link: http://www.cups.org/str.php?L2491
Version: 1.3.0
Fix Version: None

More information about the cups-devel mailing list