rentzsch.com: tales from the red shed

Hidden CUPS Web Frontend

Mac OS X
If you're using Mac OS X, try this link:

http://localhost:631

While this printer admin software looks nice (it's cupsd), it's evil that:

  1. It's on by default
  2. That it's running a low-numbered port, and thus is running as root

The only upside is that it seems to refuse connections not from localhost. Still, smells to me like it's ripe for a buffer overflow attack.

Hat tip to Waldemar for alerting me to this "feature"

Wednesday, February 26, 2003
12:00 AM

Overview
Focus of this site
Contact Me
Topics
RSS Feed
Linkblog
Twitter

Most Popular
C4[1] Videos Available
PSIG 117 in August
C4[2]: Sep 5-7 2008
mogenerator v1.10
PSIG 116: Thu Jun 5 2008
PSIG 112: Thu Feb 7 2008
PSIG 113: Thu Mar 6 2008
PSIG 114: Thu Apr 3 2008
PSIG 115: Thu May 1 2008
PSIG 111: Thu Jan 3 2008
apple's antiCAPSLOCK
Programmers Don't Like to Code
Intel-based Mac Boot Incompatibility
iPhone vs. Treo
Google Cache Hacking

Recently Updated
Sat, Jun 07: C4[2]: Sep 5-7 2008
Tue, Jun 03: Programming Special Interest Group
Tue, May 27: Focus of this Site
Wed, Apr 30: PSIG 115: Thu May 1 2008
Sat, Mar 29: C4[1] Videos Available

Weblogs I Read
Andy Finnell
Bill Bumgarner
Brent Simmons
Daniel Jalkut
Dave Dribin
Eric Albert
Eric Rescorla
Eric Sink
Greg Miller
Gus Mueller
Jeremy Zawodny
John Gruber
Mark Dalrymple
Michael Tsai
Peter Ammon
Raymond Chen
Ryan Wilcox
Scott Stevenson
Steven Frank
The Daily WTF
we hates software
Wil Shipley

Copyright © 1997-2008 Jonathan 'Wolf' Rentzsch. All rights reserved.
Questions? Comments? Contact Me.