Univention Bugzilla – Bug 32055
deny access to printer based on client ip addresses
Last modified: 2013-07-25 10:52:48 CEST
+++ This bug was initially created as a clone of Bug #31902 +++
The UCC integration into UCS@school should also cover the printer moderation.
Software on the UCC client is able to use the CUPS server on the school slave by simply setting the environment variable CUPS_SERVER.
→ automatic configuration of the printserver on the UCC client
Since all printer restrictions are done via samba shares, the UCC client would bypass these restrictions when connecting directly to the CUPS server.
→ the UCC client has to be subject to all regular UCS@school print restrictions
Possible solutions for 2):
- add the same restrictions to the CUPS config
- the UCC client uses the samba printer shares#
univention-printserver 6.0.21-2.613.201307181044, build in errata3.1-1
FAIL - add UCRV description for cups/printmode/hosts/none
FAIL - please create bug for merge into 3.2
OK - errata3.1-1
51-> ucr set cups/printmode/hosts/none="10.200.7.56 10.200.7.55"
51-> /etc/init.d/cups restart
51-> more /etc/cups/cups-access-limit.conf
Deny from 10.200.7.56 10.200.7.55
50-> lp -h 10.200.7.51 -d printer1 /etc/fstab
Anfrage-ID ist printer1–4 (1 Datei(en))
55-> lp -h 10.200.7.51 -d printer1 /etc/fstab
OK - YAML
UCR variable description added: univention-printserver 6.0.21-3.615.201307241546 build in errata3.1-1
YAML file updated (Bugnumber and Version)
There was already a build for 3.2; It has been updated with the UCRV description and the changelog was changed to mention the current bug number.
(In reply to Erik Damrose from comment #2)
> UCR variable description added: univention-printserver
> 6.0.21-3.615.201307241546 build in errata3.1-1
> YAML file updated (Bugnumber and Version)
> There was already a build for 3.2; It has been updated with the UCRV
> description and the changelog was changed to mention the current bug number.
> univention-printserver 7.0.3-2.616.201307241554