First of all, thanks for such a beautiful software! I've converted my Samsung MFP from 2005 into a driverless networked printer+scanner, and it works perfectly fine!
Current ghostscript-printer-app version listens on 0.0.0.0/[::] and does not support IP-level access control, which may be a security issue due to rather widespread IPv6 connectivity with 'real' addresses. CUPS has 'allow LAN access only' convenient checkbox, it would be great to have the same functionality in pappl-retrofit-based applications without nginx/other web front-end.
It should be implemented by enumerating IP addresses on the interfaces and allowing access by the network segment and its mask. I saw that libcups function is already used to enumerate addresses.
Thanks.
First of all, thanks for such a beautiful software! I've converted my Samsung MFP from 2005 into a driverless networked printer+scanner, and it works perfectly fine!
Current ghostscript-printer-app version listens on
0.0.0.0
/[::]
and does not support IP-level access control, which may be a security issue due to rather widespread IPv6 connectivity with 'real' addresses. CUPS has 'allow LAN access only' convenient checkbox, it would be great to have the same functionality in pappl-retrofit-based applications without nginx/other web front-end.It should be implemented by enumerating IP addresses on the interfaces and allowing access by the network segment and its mask. I saw that libcups function is already used to enumerate addresses.
Thanks.