[cups.bugs] [LOW] STR #3888: DoS checking misbehaves with unix socket
Michael Sweet
msweet at apple.com
Fri Aug 5 22:02:45 PDT 2011
DO NOT REPLY TO THIS MESSAGE. INSTEAD, POST ANY RESPONSES TO THE LINK BELOW.
[STR Closed w/Resolution]
Source changes attached to substitute "localhost" if the path we get
doesn't start with "/" (which is probably a Linux kernel bug).
As for doing DoS checks on localhost, by doing so a local user cannot lock
out remote users which is a common concern in typical university
environments.
See the MaxClientsPerHost directive for configuring a higher limit than
the default (1/10th of MaxClients) on systems that are supporting legacy
protocols like SMB via a local helper program.
Link: http://www.cups.org/str.php?L3888
Version: 1.5-current
Fix Version: 1.5-current (r9868)
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: str3888.patch
URL: <http://lists.cups.org/pipermail/cups-devel/attachments/20110805/9520c8e7/attachment.ksh>
More information about the cups-devel
mailing list