Bug 163011
Summary: | CUPS daemon crash from IPP/SSL bug when repeatedly requesting web interface (possible DoS) | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 4 | Reporter: | Pete Harvey <peter.harvey> |
Component: | cups | Assignee: | Tim Waugh <twaugh> |
Status: | CLOSED ERRATA | QA Contact: | |
Severity: | high | Docs Contact: | |
Priority: | medium | ||
Version: | 4.0 | ||
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i386 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | RHBA-2006-0323 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2006-08-10 21:20:38 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 169933, 181409 |
Description
Pete Harvey
2005-07-12 08:21:26 UTC
How precisely are you configuring CUPS to require SSL IPP connections? Are you putting "Encryption Required" in cupsd.conf? Which section are you putting it in? Config file snippet: SSLPort 443 .. <Location /printers> Order Deny,Allow Allow From x.x.x.x/24 AuthType Basic AuthClass User Encryption required Satisfy all </Location> 2. Connect with a web browser to the web interface over the SSL port, eg: https://cupsserver:631/printers/testprinter Can you clarify this please? Do you mean 'https://cupsserver:443/printers/testprinter'? Yep sorry, that should've been: SSLPort 631 Confirmed. Reported upstream as: http://www.cups.org/str.php?L1290 This issue is on Red Hat Engineering's list of planned work items for the upcoming Red Hat Enterprise Linux 4.4 release. Engineering resources have been assigned and barring unforeseen circumstances, Red Hat intends to include this item in the 4.4 release. An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHBA-2006-0323.html |