[TriLUG] Securing Lpd (TCP Port 515)
Paul D. Boyle
boyle at laue.chem.ncsu.edu
Fri Jun 14 09:28:41 EDT 2002
> Does anyone have any good recommendations on securing Lpd (Line Printer
> Daemon)? Being paranoid as I am, I only start lpd right before I have
> to print something, then shut it off immediately after I've finished
> printing. Is there a way to set lpd to *not* listen for connections?
A few things come to mind:
1) Use ipchains/iptables to filter packets and block incoming/outgoing
connections
2) Try to run lpd through inetd (I've never tried this, but it would be
worth trying), and then use tcp_wrappers to control access.
3) Hack the lpd source code to add an option which turns off the
network stuff. (OK, most people wouldn't want to do this).
Paul
--
Paul D. Boyle | boyle at laue.chem.ncsu.edu
Director, X-ray Structural Facility | phone: (919) 515-7362
Department of Chemistry - Box 8204 | FAX: (919) 515-5079
North Carolina State University |
Raleigh, NC, 27695-8204
http://laue.chem.ncsu.edu/web/xray.welcome.html
More information about the TriLUG
mailing list