Lynis security controls


PRNT-2307PrintingCUPS configuration file permissions

The configuration file (cupsd.conf) should be have limited file permissions. This reduces who can see the configuration of the CUPS daemon. Generally it should not be readable for normal users.

PRNT-2308PrintingCUPS network configuration

Depending on the usage of the CUPS daemon, listening on the network should be limited. If the daemon is used a local spooler, it should be configured to listen on localhost only.