Remote printer service pose security risk?

30 pts.
Tags:
AIX
Remote Printing
Security audits
Solaris 10
SUSE Linux
The IT auditors have pointed some of my boxes (SUSE, Solaris 10 and AIX) have [strong]remote printer service[/strong] running and that is a potent security violation. I am confused what is remote printer service and how do I disable the same. I need the help. A prompt response is appreciable.

Software/Hardware used:
Remote printer

Answer Wiki

Thanks. We'll let you know when a new response is added.

Locate the daemons providing this remote printing service (these may be LPD – Line Printing Daemon, LPRng – “LPD” New Generation, CUPS – Common Unix Printing System) and stop them. Configure your systems not to launch those daemons during normal startup. This, of course, is OS specific

Discuss This Question: 3  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • RanaSarkar
    what is this remote printer service actually
    30 pointsBadges:
    report
  • Subhendu Sen
    On SuSE Linux there r several method to connect printer remotely or network thru.... as Petkoa said, remember also SMB Network server (Connect printer other than Linux OS) or Remote IPP Queue.SuSE Linux uses CUPS (or LPRng if it's an older system). The Solaris and AIX use some version of the LPD daemon. On those machines that don't need to print and/or don't have a printer attached you can usually disable the service. On destination side, must be allowed to access the other machine. If u are already a trusted host and have an entry in /etc/hosts.equiv, then there is no problem. If not, u will be denied access. If the sole reason the remote machine needs to trust ur machine is to do remote printing, it is recommend not including it in the hosts.equiv file. This opens up more holes. Instead, put ur host name in the file /etc/hosts.lpd. The only thing this file does is decide who can access the printers remotely. Putting remote machine names here is much safer.
    28,400 pointsBadges:
    report
  • jinteik
    just to share abit, but nothing regarding Linux, even on windows servers, the IT auditor ask us to turn off the printer service too.
    17,790 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following