trunk/gnome2-system-admin-guide/C/appendixb.xml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32

  
  <appendix id="appendixb-0">
    <title>Security Note on Configuring SMB Printers</title>
    <highlights>
      <para>This appendix provides a security note related to the configuration
of printers on Windows network shares.</para>
    </highlights>
    <indexterm>
      <primary>Samba</primary>
      <see>SMB</see>
    </indexterm>
    <indexterm>
      <primary>Windows network shares</primary>
      <see>SMB</see>
    </indexterm>
    <indexterm>
      <primary>SMB</primary>
      <secondary>configuring printers</secondary>
    </indexterm>
    <para>Windows network shares are also referred to as Samba or <firstterm>SMB</firstterm>
shares. When you configure a printer on an SMB share, you must enter a username
and password for the print queue. </para>
    <para>The username and password for the print queue is stored as unencrypted
text in the file <filename>/etc/cups/printers.conf</filename>.
This file has read-only permissions for users with root privileges, so any
user with root privileges can read the username and password for the print
queue. </para>
    <para>To reduce the impact of possible security violations, ensure that the
username and password required to access the print queue is used only for
the print queue.  This ensures that any possible security violation is restricted
to unauthorized use of the print queue.</para>
  </appendix>