LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices



Reply
 
Search this Thread
Old 05-20-2006, 03:46 PM   #1
MBA Whore
Member
 
Registered: May 2006
Location: Kansas City, MO
Distribution: Various: pclos, Debian, Ubuntu, etc . . .
Posts: 582

Rep: Reputation: 30
Question LINUX newbie: Was using root password in this case a bad idea?


LINUX newbie: Sorry for this long story, but I really would appreciate some insight.

I have an HP 960c printer. I use MEPIS 3.43. I had to configure something called CUPS (online) to get my printer to work. After looking online, I found some tutorials / how-to guides.

Eventually, I had to open a web browser (Firefox 1.5) and go to the following url to configure something called CUPS: http://localhost:631/admin

It asked for my user ID and password. I tried my "regular" user ID and password but it did not seem to work. Next, I typed "root" for my user ID and my root password for the password. I had instant access and set up everything. The printer works well now. However, I am nervous about having used my root password (online) to set up my printer via CUPS.

Recently, I found what appears to be a 2nd option (http://www.cups.org/articles.php?L237+I10+TMine+P1+Q) that looks like it would work, but since I am very new at LINUX, I am afraid to try it (I have to create a group and add a line to some CUPS file)

My questions are:
1) Is my root password safe, since I had to go "online" to CUPS to configure my printer?
2) Should I have used the 2nd option instead?
3) Whether or not I should have used the 2nd option, could someone tell me the difference between what I did and the 2nd option?

Thank you for taking the time to read this. I look forward to all replies!

--MBA Whore
 
Old 05-20-2006, 03:58 PM   #2
GUIPenguin
Member
 
Registered: Aug 2004
Location: Maine
Distribution: Gentoo Linux
Posts: 239

Rep: Reputation: 30
Don't worry about it. You're not sending your password over the network because, localhost, or 127.0.0.1 is connecting to the loopback interface on your system. You are mearly connecting to a server that is running localy on you're linux installation. You're password isn't being sent over the network like it would be if you connected to a listening cups deamon on another computer. So there isn't any way for a person to sniff your password from outside the interface. Even if you were to connect to a telnet or ftp server on your own lan, the design of wired, switched networks, would entitle the cracker to poison your arp cache and re-direct your traffic through him....and then start sniffing. But the possibility of that happening on a home-network is nothing.

That is how I setup my printers, I add my .ppd driver into /usr/share/cups/model, restart cups, then browse using firefox to http://127.0.0.1:631 enter my root password, and setup my printer.

Last edited by GUIPenguin; 05-20-2006 at 04:07 PM.
 
Old 05-20-2006, 04:06 PM   #3
davcefai
Member
 
Registered: Dec 2004
Location: Malta
Distribution: Debian Sid
Posts: 771

Rep: Reputation: 32
You can sleep OK tonight . You did not "go online" to configure CUPS.

CUPS admin is via a web interface on your own PC. The clue in in the URL.

localhost is your own computer. The second option is to give other users the rights do to what you did. Otherwise only root can do it.

This is a fairly common way of doing things, using a web interface. It also allows you to configure PCs remotely. If you are a permitted user (ie your "2nd option" then you can log in to http://remotemachine:631 and configure it. Very useful if you don't feel like walking to the kitchen at home, or half a mile in a factory.
 
Old 05-20-2006, 04:07 PM   #4
davcefai
Member
 
Registered: Dec 2004
Location: Malta
Distribution: Debian Sid
Posts: 771

Rep: Reputation: 32
GUIPenguin: You type faster than I do!
 
Old 05-20-2006, 04:52 PM   #5
MBA Whore
Member
 
Registered: May 2006
Location: Kansas City, MO
Distribution: Various: pclos, Debian, Ubuntu, etc . . .
Posts: 582

Original Poster
Rep: Reputation: 30
Phew....thanks...

Thanks for your replies.....I'll sleep better tonight...lol.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
How to retrieve( or reset) root password in Mandrake Linux, as I forgot my password? Reghunath Linux - Software 4 05-08-2008 05:11 AM
Linux - Programming Forum , Linux - Tweaks Forum .. is it a bad idea ??? UsualTuxpect LQ Suggestions & Feedback 7 01-16-2006 04:33 AM
Rebooting Linux servers bad idea? dippelw Linux - General 4 11-30-2005 04:50 PM
Running KPPP as Root = Bad Idea? Hawklad Debian 8 09-23-2004 07:57 PM
Sun JDS with SuSe linux ..was this a bad idea? GoinEasy9 Linux - General 3 02-23-2004 10:19 PM


All times are GMT -5. The time now is 07:34 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration