Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!mnetor!uunet!seismo!mcvax!ukc!stc!root44!aegl
From: aegl@root.co.uk (Tony Luck)
Newsgroups: comp.unix.questions,comp.bugs.sys5
Subject: Re: SysV lp spooler a security hole
Message-ID: <425@root44.co.uk>
Date: Wed, 9-Sep-87 04:17:22 EDT
Article-I.D.: root44.425
Posted: Wed Sep  9 04:17:22 1987
Date-Received: Sat, 12-Sep-87 04:38:16 EDT
References: <313@pvab.UUCP>
Reply-To: aegl@root44.UUCP (Tony Luck)
Organization: Root Computers Ltd, London, England
Lines: 10
Xref: mnetor comp.unix.questions:3979 comp.bugs.sys5:201

The biggest problem I've noticed with print spoolers is the location of
the printer - it doesn't really matter if you have wonderful software
security (you can of course print a file that does not have public access
simply by saying "lp < file" instead of "lp file" so that you open the
file - then "lp" inherits the descriptor) if your print room is open for
anyone to wander into - how often have you had to sort through a pile of
listings to find your own output - of course you don't read them - do you.
But plenty of people do.

-Tony Luck