From mboxrd@z Thu Jan  1 00:00:00 1970
From: Michael C Thompson <thompsmc@us.ibm.com>
Subject: cups userspace -- trusted programs?
Date: Wed, 31 May 2006 15:06:13 -0500
Message-ID: <447DF735.9090706@us.ibm.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Return-path: <redhat-lspp-bounces@redhat.com>
List-Unsubscribe: <https://www.redhat.com/mailman/listinfo/redhat-lspp>,
	<mailto:redhat-lspp-request@redhat.com?subject=unsubscribe>
List-Archive: <https://www.redhat.com/archives/redhat-lspp>
List-Post: <mailto:redhat-lspp@redhat.com>
List-Help: <mailto:redhat-lspp-request@redhat.com?subject=help>
List-Subscribe: <https://www.redhat.com/mailman/listinfo/redhat-lspp>,
	<mailto:redhat-lspp-request@redhat.com?subject=subscribe>
Sender: redhat-lspp-bounces@redhat.com
Errors-To: redhat-lspp-bounces@redhat.com
To: Linux Audit <linux-audit@redhat.com>, Linda Knippers <linda.knippers@hp.com>, Steve Grubb <sgrubb@redhat.com>, mra@hp.com, redhat-lspp@redhat.com
List-Id: linux-audit@redhat.com

Hey all,

I'm wondering if the intent of the cups userspace tools are to be 
trusted programs? Specifically I'm curious about cupsaccept, cupsreject, 
cupsenable and cupsdisable. The reason I ask is because if they are 
supposed to be trusted programs, they don't generate unique audit 
messages like other programs.

Personally, I think these tools should generate messages since they are 
a source for leaking information, and therefore should be restricted to 
administrators.

Thanks,
Mike

--
redhat-lspp mailing list
redhat-lspp@redhat.com
https://www.redhat.com/mailman/listinfo/redhat-lspp