- fix "Satisfy Any" directive

author Jan Rękorajski <baggins@pld-linux.org>

Thu, 6 Dec 2007 17:37:27 +0000 (17:37 +0000)

committer cvs2git <feedback@pld-linux.org>

Sun, 24 Jun 2012 12:13:13 +0000 (12:13 +0000)
author Jan Rękorajski <baggins@pld-linux.org>
Thu, 6 Dec 2007 17:37:27 +0000 (17:37 +0000)
committer cvs2git <feedback@pld-linux.org>
Sun, 24 Jun 2012 12:13:13 +0000 (12:13 +0000)
diff --git a/cups-satisfy-any.patch b/cups-satisfy-any.patch

new file mode 100644 (file)

index 0000000..a59eb64
--- /dev/null
+++ b/cups-satisfy-any.patch
@@ -0,0 +1,21 @@
+
+Removed code prevented "Satisfy Any" directive to work, cupsdCheckPolicy checks
+for auth info AND allow/deny access lists and does its job properly so checking
+again just for auth info is The Wrong Thing as there may be an access list
+allowing unauthorized clients based on their IP.
+
+--- cups-1.3.4/scheduler/ipp.c~        2007-10-22 22:27:22.000000000 +0200
++++ cups-1.3.4/scheduler/ipp.c 2007-12-06 18:25:11.000000000 +0100
+@@ -1294,12 +1294,6 @@
+     send_http_error(con, status, printer);
+     return (NULL);
+   }
+-  else if ((printer->type & CUPS_PRINTER_AUTHENTICATED) &&
+-           !con->username[0] && !auth_info)
+-  {
+-    send_http_error(con, HTTP_UNAUTHORIZED, printer);
+-    return (NULL);
+-  }
+ #ifdef HAVE_SSL
+   else if (auth_info && !con->http.tls &&
+            !httpAddrLocalhost(con->http.hostaddr))
author	Jan Rękorajski <baggins@pld-linux.org>
	Thu, 6 Dec 2007 17:37:27 +0000 (17:37 +0000)
committer	cvs2git <feedback@pld-linux.org>
	Sun, 24 Jun 2012 12:13:13 +0000 (12:13 +0000)