Authentication problem (UID 0) SOLVED
Paul
cups at acculin.com
Sat Nov 20 15:34:19 PST 2004
Having struggled with this for some hours, indeed changing RunAsUser to No does make encrypted connections work, but this seems like Hobson's choice;
In order to make the traffic encrypted, so I might allow it in through the firewall from the internet for users offsite, I must now run it as root, demanding a leap of faith in cups that I am wondering about.
Wish list:
RunAsUser AND SSL connections
SSL User authentication
A standard ipps port, so as not to confuse it with https
Apache seems to manage this quite well, there is nothing incompatible about SSL and a regular user.
With these things it is quite conceivable that IPP could make substantial inroads into the fax machine function.
Please DON'T junk the RunAsUser setting.
Paul
roblin wrote:
> >
> > Just found the reason: SuSE's cupsd.conf by default contains
> > "RunAsUser Yes". That maybe more secure but refuses root to authenticate.
>
> My problem with this is that they doesn't seem to be any combination of access control that works with
>
> RunAsUser Yes
>
> on any setup that I have done.
>
> So we end up with a lot of posts all over the internet cursing Cups, when in fact it is the distro that is selecting a combination of authentication that simply doesn't work.
>
> Then eventually the user comes across the answer
>
> RunAsuser No
>
> but its too late, they have screwed up the cupsd.conf file so much by then that nothing is going to work.
>
> I think it would be better for Cups to simple junk that setting.
More information about the cups
mailing list