Package: hplip Version: 0.9.1-1 Severity: normal
hpiod always listens on INADDR_ANY (0.0.0.0) and so it's remotely accessible by default. This is a potential security problem and bad out-of-the-box configuration. It seems that other programs only access hpiod via 127.0.0.1. If this is enough, just make it listen on 127.0.0.1. If there is a need to sometimes be remotely accessible, there should be a possibility of configuring it for remote acess and by default only using it for 127.0.0.1. Something like a debconf question or just a /etc/default/hplik file containing an option for listening interface. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.11-rc5 Locale: LANG=et_EE.ISO-8859-15, LC_CTYPE=et_EE.ISO-8859-15 (charmap=ISO-8859-15) Versions of packages hplip depends on: ii cupsys 1.1.23-7 Common UNIX Printing System(tm) - ii hplip-data 0.9.1-1 HP Linux Printing and Imaging - da ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an ii libcupsys2-gnutls10 1.1.23-7 Common UNIX Printing System(tm) - ii libgcc1 1:3.4.3-12 GCC support library ii libsnmp5 5.1.2-6.1 NET SNMP (Simple Network Managemen ii libssl0.9.7 0.9.7e-3 SSL shared libraries ii libstdc++5 1:3.3.5-12 The GNU Standard C++ Library v3 ii python 2.3.5-2 An interactive high-level object-o ii python-qt3 3.14.1-2 Qt3 bindings for Python (default v -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
