Section 4.11 The print Service (lpd)

Previous page
Table of content
Next page
   

4.11 The print Service (lpd)

graphics/fivedangerlevel.gif

The standard Linux lpd program listens on TCP port 515 for remote print job requests. Its security is patterned on the flawed R* security found in rsh and its brethren that are discussed in "The rsh, rcp, rexec, and rlogin Services" on page 198. The lpd daemon will accept jobs from systems and users specified in /etc/hosts.equiv and /etc/hosts.lpd. It is strongly recommended that the firewall block this port to all untrusted systems. A weaker alternative is to either edit /etc/services or invoke lpd with an alternate port number that crackers are less likely to detect and attack.

The port number is specified on the command line as a simple number (with no dash) when lpd is started. If network access is possible (local or remote), it is suggested to start lpd with the -l flag to cause logging of requests via syslogd. The danger level has been boosted to five for the second edition because of a huge number of compromises in early 2001 due to a Red Hat bug and crackers continuing to attack this port frequently.

   
Top

Previous page
Table of content
Next page
Real World Linux Security Prentice Hall Ptr Open Source Technology Series
Real World Linux Security Prentice Hall Ptr Open Source Technology Series
ISBN: N/A
EAN: N/A
Year: 2002
Pages: 260
BUY ON AMAZON
Interprocess Communications in Linux: The Nooks and Crannies
MySQL Clustering
Visual C# 2005 How to Program (2nd Edition)
Mapping Hacks: Tips & Tools for Electronic Cartography
Persuasive Technology: Using Computers to Change What We Think and Do (Interactive Technologies)
Python Standard Library (Nutshell Handbooks) with
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy