Novell LINUX ENTERPRISE SERVER 10 - INSTALLATION AND ADMINISTRATION 11-05-2007 Installation Manual page 467

printcap. To ensure that applications that can only read queue names from /etc/
printcap continue to work properly, /etc/printcap is a symbolic link pointing
to /etc/cups/printcap.
When cupsd runs as lp, port 631 cannot be opened. Therefore, cupsd cannot be
reloaded with rccups reload. Use rccups restart instead.
Generalized Functionality for BrowseAllow and
BrowseDeny
The access permissions set for BrowseAllow and BrowseDeny apply to all kinds
of packages sent to cupsd. The default settings in /etc/cups/cupsd.conf are
as follows:
BrowseAllow @LOCAL
BrowseDeny All
and
<Location />
Order Deny,Allow
Deny From All
Allow From 127.0.0.1
Allow From 127.0.0.2
Allow From @LOCAL
</Location>
In this way, only LOCAL hosts can access cupsd on a CUPS server. LOCAL hosts are
hosts whose IP addresses belong to a non-PPP interface (interfaces whose
IFF_POINTOPOINT flags are not set) and whose IP addresses belong to the same
network as the CUPS server. Packets from all other hosts are rejected immediately.
cupsd Activated by Default
In a standard installation, cupsd is activated automatically, enabling comfortable access
to the queues of CUPS network servers without any additional manual actions. The
items in Section "cupsd Runs as the User lp"
Functionality for BrowseAllow and BrowseDeny"
for this feature, because otherwise the security would not be sufficient for an automatic
activation of cupsd.
(page 448) and Section "Generalized
(page 449) are vital preconditions
Printer Operation 449