[cups.bugs] [MOD] STR #3032: rewriting cupsd.conf fromwebinterface changes deny/allow order

Michael Sweet mike at easysw.com
Fri Dec 5 06:22:29 PST 2008


Thomas Seeling wrote:
> ...
> I accept that the full config file is written back, this is much easier than
> parsing the config file and apply the changes (I'm a software developer myself).
> But the write-back should be working correctly and match the settings
> originally read from the same file!

By design, your custom changes to the config file get overwritten by
the "simple" access control settings from the web page.  And in fact
we *do* parse the config file and apply the changes, but the access
controls are part of those changes.

Moreover, if you modify your original configuration from:

     Order deny,allow
     Deny from all
     ...

to:

     Order allow,deny
     ...

then you'll a) get the same behavior and b) not see this problem when
changing settings from the web page.  "Order allow,deny" has an
implicit "deny from all", while "Order deny,allow" has an implicit
"allow from all".

(personally I wish I had never added support for Apache's "all" and
"none" addresses, since Order accomplishes the same thing much more
cleanly...)

-- 
______________________________________________________________________
Michael Sweet, Easy Software Products           mike at easysw dot com




More information about the cups-devel mailing list