CUPS, Alpine, and printserving

Beartooth Beartooth at swva.net
Fri Oct 31 13:46:59 UTC 2008 

On Thu, 30 Oct 2008 22:44:19 +0100, Björn Persson wrote:

> Beartooth wrote:
>> On Wed, 29 Oct 2008 15:48:27 -0500, Mikkel L. Ellertson wrote:
>> > You should be able to administer all the CUPS setups from one
>> > machine,
>>
>> 	I tried that again this morning. No joy. If I type
>> http://192.168.x.y:631/admin into firefox on 192.168.x.z, I get a 503
>> from privoxy : connect failed.
> 
> 1: Check that Cups is actually listening on the network. Run this
> command as root on the machine where the printer is:
> 
> netstat --inet --inet6 --listen --program --numeric | grep cupsd
> 
> Does it say "192.168.x.y:631" or "127.0.0.1:631"?

	No, neither. 

[root at Hbsk2 ~]# netstat --inet --inet6 --listen --program --numeric | 
grep cupsd
tcp        0      0 0.0.0.0:631                 
0.0.0.0:*                   LISTEN      2526/cupsd          
tcp        0      
0 :::631                      :::*                        LISTEN      
2526/cupsd          
udp        0      0 0.0.0.0:631                 
0.0.0.0:*                               2526/cupsd          
[root at Hbsk2 ~]# 

	(Btw, the formatting is bad here, too: I have to run fairly large 
fonts in my gnome-terminal to be able to read with any comfort, alas!)
 
> 2: Do you have a packet filter ("firewall") on the machine where the
> printer is? Have you opened the IPP ports in the packet filter?

	How do I tell?

	I have whatever F9 defaults to; I've tried to disable SELinux, 
but not I think succeeded.

	Lacking the skills to be sure whether I've been cracked, let 
alone those to recover, I try to be paranoid; I install denyhosts, for 
instance, and likely other defenses that don't spring to mind.

	Also, the router that my ISP supplies (Netgear MBR 814) supplies 
several kinds of defenses, which I have tried to set with caution. When I 
want to do bittorrent, for instance, I have to go change the router 
settings for a while. (I try to leave them changed long enough to give 
back more that I take, before I change them back; but I haven't actually 
used the torrent in months, so they are probably tight.)

-- 
Beartooth Staffwright, PhD, Neo-Redneck Linux Convert
Remember I know precious little of what I am talking about.

More information about the fedora-list mailing list