• Willkommen im Linux Club - dem deutschsprachigen Supportforum für GNU/Linux. Registriere dich kostenlos, um alle Inhalte zu sehen und Fragen zu stellen.

[gelöst] oS 11.4 CUPS Webinterface nicht erreichbar

flying_rio

flying_rio

Member
Nachdem ich ein Update von 11.3 auf 11.4 gemacht habe, kann ich das CUPS Webinterface nicht mehr erreichen. :nosmile:

Ich bekomme kurz eine Fehlermeldung wie "localhost nicht erkannt", oder so ähnlich. :???:

Der Dienst läuft, aber ich verstehe nicht wo das Problem liegt.

Wer kann helfen?
 
Pitti 1

Pitti 1

Hacker
In der cupsd.conf wird normalerweise festgelegt, wer Zugriff auf das Webinterface erhält.
Was erhältst Du bei
Code: 
cat /etc/cups/cupsd.conf
unter root?
 
OP
flying_rio

flying_rio

Member
Jägerschlürfer schrieb:
funktioniert dein Internet denn sonst ohne Probleme?
Hast du den cups Dienst denn mal neu gestartet?
Zum Vergrößern anklicken....

Ja das I-net funktioniert problemlos.
Ich hatte CUPS noch einmal neu installiert (hatte ich irgendwo gelesen, daß dies nach einem Update hilft) => leider Fehlanzeige
 
OP
flying_rio

flying_rio

Member
Pitti 1 schrieb:
In der cupsd.conf wird normalerweise festgelegt, wer Zugriff auf das Webinterface erhält.
Was erhältst Du bei
Code: 
cat /etc/cups/cupsd.conf
unter root?
Zum Vergrößern anklicken....

Code: 
#
# "$Id: cupsd.conf.in 9310 2010-09-21 22:34:57Z mike $"
#
# Sample configuration file for the CUPS scheduler.  See "man cupsd.conf" for a
# complete description of this file.
#

# Log general information in error_log - change "warn" to "debug"
# for troubleshooting...
LogLevel warn

# Administrator user group...
SystemGroup sys root


# Only listen for connections from the local machine.
Listen localhost:631
Listen /var/run/cups/cups.sock

# Show shared printers on the local network.
Browsing On
BrowseOrder allow,deny
BrowseAllow all
BrowseLocalProtocols CUPS

# Default authentication type, when authentication is required...
DefaultAuthType Basic

# Restrict access to the server...
<Location />
  Order allow,deny
  Allow 127.0.0.2
</Location>

# Restrict access to the admin pages...
<Location /admin>
  Order allow,deny
</Location>

# Restrict access to configuration files...
<Location /admin/conf>
  AuthType Default
  Require user @SYSTEM
  Order allow,deny
</Location>

# Set the default printer/job policies...
<Policy default>
  # Job-related operations must be done by the owner or an administrator...
  <Limit Create-Job Print-Job Print-URI Validate-Job>
    Order deny,allow
  </Limit>

  <Limit Send-Document Send-URI Hold-Job Release-Job Restart-Job Purge-Jobs Set-Job-Attributes Create-Job-Subscription Renew-Subscription Cancel-Subscription Get-Notifications Reprocess-Job Cancel-Current-Job Suspend-Current-Job Resume-Job CUPS-Move-Job CUPS-Get-Document>
    Require user @OWNER @SYSTEM
    Order deny,allow
  </Limit>

  # All administration operations require an administrator to authenticate...
  <Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer CUPS-Add-Modify-Class CUPS-Delete-Class CUPS-Set-Default CUPS-Get-Devices>
    AuthType Default
    Require user @SYSTEM
    Order deny,allow
  </Limit>

  # All printer operations require a printer operator to authenticate...
  <Limit Pause-Printer Resume-Printer Enable-Printer Disable-Printer Pause-Printer-After-Current-Job Hold-New-Jobs Release-Held-New-Jobs Deactivate-Printer Activate-Printer Restart-Printer Shutdown-Printer Startup-Printer Promote-Job Schedule-Job-After CUPS-Accept-Jobs CUPS-Reject-Jobs>
    AuthType Default
    Require user @SYSTEM
    Order deny,allow
  </Limit>

  # Only the owner or an administrator can cancel or authenticate a job...
  <Limit Cancel-Job CUPS-Authenticate-Job>
    Require user @OWNER @SYSTEM
    Order deny,allow
  </Limit>

  <Limit All>
    Order deny,allow
  </Limit>
</Policy>

# Set the authenticated printer/job policies...
<Policy authenticated>
  # Job-related operations must be done by the owner or an administrator...
  <Limit Create-Job Print-Job Print-URI Validate-Job>
    AuthType Default
    Order deny,allow
  </Limit>

  <Limit Send-Document Send-URI Hold-Job Release-Job Restart-Job Purge-Jobs Set-Job-Attributes Create-Job-Subscription Renew-Subscription Cancel-Subscription Get-Notifications Reprocess-Job Cancel-Current-Job Suspend-Current-Job Resume-Job CUPS-Move-Job CUPS-Get-Document>
    AuthType Default
    Require user @OWNER @SYSTEM
    Order deny,allow
  </Limit>

  # All administration operations require an administrator to authenticate...
  <Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer CUPS-Add-Modify-Class CUPS-Delete-Class CUPS-Set-Default>
    AuthType Default
    Require user @SYSTEM
    Order deny,allow
  </Limit>

  # All printer operations require a printer operator to authenticate...
  <Limit Pause-Printer Resume-Printer Enable-Printer Disable-Printer Pause-Printer-After-Current-Job Hold-New-Jobs Release-Held-New-Jobs Deactivate-Printer Activate-Printer Restart-Printer Shutdown-Printer Startup-Printer Promote-Job Schedule-Job-After CUPS-Accept-Jobs CUPS-Reject-Jobs>
    AuthType Default
    Require user @SYSTEM
    Order deny,allow
  </Limit>

  # Only the owner or an administrator can cancel or authenticate a job...
  <Limit Cancel-Job CUPS-Authenticate-Job>
    AuthType Default
    Require user @OWNER @SYSTEM
    Order deny,allow
  </Limit>

  <Limit All>
    Order deny,allow
  </Limit>
</Policy>

#
# End of "$Id: cupsd.conf.in 9310 2010-09-21 22:34:57Z mike $".
#

# The policy below is added by openSUSE/Novell during build of our cups package.
# The policy 'allowallforanybody' is totally open and insecure and therefore
# it can only be used within an internal network where only trused users exist
# and where the cupsd is not accessible at all from any external host, see
# http://en.opensuse.org/SDB:CUPS_and_SANE_Firewall_settings
# Have in mind that any user who is allowed to do printer admin tasks
# can change the print queues as he likes - e.g. send copies of confidental
# print jobs from an internal network to any external destination, see
# http://en.opensuse.org/SDB:CUPS_in_a_Nutshell
# For documentation regarding 'Managing Operation Policies' see
# http://www.cups.org/documentation.php/doc-1.4/policies.html
<Policy allowallforanybody>
  <Limit All>
    Order deny,allow
    Allow from all
  </Limit>
</Policy>
# Explicitly set the CUPS 'default' policy to be used by default:
DefaultPolicy default
# End of additions by openSUSE/Novell.
 
OP
flying_rio

flying_rio

Member
Jägerschlürfer schrieb:
das sieht für mich etwas komisch aus. Sollte da nicht eher 127.0.0.1 stehen?
Zum Vergrößern anklicken....
Da hast Du recht. Ich könnte ja mal den Eintrag anpassen.


Ansonsten hab' ich gerade mal folgendes getestet:
Code: 
http://127.0.0.1:631
Und siehe da das Webinterface öffnet sich.

Die Frage ist nur, warum "localhost" nicht aufgelöst wird.
Da kenn' ich mich überhaupt nicht mit aus. Muß es da nicht irgendwo eine DNS-Tabelle geben oder so was ähnliches?
 
Pitti 1

Pitti 1

Hacker
Hier ist meine cupsd.conf:
Code: 
#
# "$Id: cupsd.conf.in 8805 2009-08-31 16:34:06Z mike $"
#
# Sample configuration file for the CUPS scheduler.  See "man cupsd.conf" for a
# complete description of this file.
#

# Log general information in error_log - change "warn" to "debug"
# for troubleshooting...
LogLevel warn

# Administrator user group...
SystemGroup lpadmin root
Group sys
User lp


# Only listen for connections from the local machine.
Listen *:631
Listen /var/run/cups/cups.sock

# Show shared printers on the local network.
Browsing On
BrowseAddress @LOCAL
BrowseOrder allow,deny
BrowseAllow all
BrowseLocalProtocols CUPS dnssd

# Default authentication type, when authentication is required...
DefaultAuthType Basic

# Restrict access to the server...
<Location />
  Allow @LOCAL
  Order allow,deny
</Location>

# Restrict access to the admin pages...
<Location /admin>
  Allow @LOCAL
  Order allow,deny
</Location>

# Restrict access to configuration files...
<Location /admin/conf>
  Allow @LOCAL
  AuthType Default
  Require user @SYSTEM
  Order allow,deny
</Location>

# Set the default printer/job policies...
<Policy default>
  # Job-related operations must be done by the owner or an administrator...
  <Limit Send-Document Send-URI Hold-Job Release-Job Restart-Job Purge-Jobs Set-Job-Attributes Create-Job-Subscription Renew-Subscription Cancel-Subscription Get-Notifications Reprocess-Job Cancel-Current-Job Suspend-Current-Job Resume-Job CUPS-Move-Job CUPS-Get-Document>
    Require user @OWNER @SYSTEM
    Order deny,allow
  </Limit>

  # All administration operations require an administrator to authenticate...
  <Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer CUPS-Add-Modify-Class CUPS-Delete-Class CUPS-Set-Default CUPS-Get-Devices>
    AuthType Default
    Require user @SYSTEM
    Order deny,allow
  </Limit>

  # All printer operations require a printer operator to authenticate...
  <Limit Pause-Printer Resume-Printer Enable-Printer Disable-Printer Pause-Printer-After-Current-Job Hold-New-Jobs Release-Held-New-Jobs Deactivate-Printer Activate-Printer Restart-Printer Shutdown-Printer Startup-Printer Promote-Job Schedule-Job-After CUPS-Accept-Jobs CUPS-Reject-Jobs>
    AuthType Default
    Require user @SYSTEM
    Order deny,allow
  </Limit>

  # Only the owner or an administrator can cancel or authenticate a job...
  <Limit Cancel-Job CUPS-Authenticate-Job>
    Require user @OWNER @SYSTEM
    Order deny,allow
  </Limit>

  <Limit All>
    Order deny,allow
  </Limit>
</Policy>

# Set the authenticated printer/job policies...
<Policy authenticated>
  # Job-related operations must be done by the owner or an administrator...
  <Limit Create-Job Print-Job Print-URI>
    AuthType Default
    Order deny,allow
  </Limit>

  <Limit Send-Document Send-URI Hold-Job Release-Job Restart-Job Purge-Jobs Set-Job-Attributes Create-Job-Subscription Renew-Subscription Cancel-Subscription Get-Notifications Reprocess-Job Cancel-Current-Job Suspend-Current-Job Resume-Job CUPS-Move-Job CUPS-Get-Document>
    AuthType Default
    Require user @OWNER @SYSTEM
    Order deny,allow
  </Limit>

  # All administration operations require an administrator to authenticate...
  <Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer CUPS-Add-Modify-Class CUPS-Delete-Class CUPS-Set-Default>
    AuthType Default
    Require user @SYSTEM
    Order deny,allow
  </Limit>

  # All printer operations require a printer operator to authenticate...
  <Limit Pause-Printer Resume-Printer Enable-Printer Disable-Printer Pause-Printer-After-Current-Job Hold-New-Jobs Release-Held-New-Jobs Deactivate-Printer Activate-Printer Restart-Printer Shutdown-Printer Startup-Printer Promote-Job Schedule-Job-After CUPS-Accept-Jobs CUPS-Reject-Jobs>
    AuthType Default
    Require user @SYSTEM
    Order deny,allow
  </Limit>

  # Only the owner or an administrator can cancel or authenticate a job...
  <Limit Cancel-Job CUPS-Authenticate-Job>
    AuthType Default
    Require user @OWNER @SYSTEM
    Order deny,allow
  </Limit>

  <Limit All>
    Order deny,allow
  </Limit>
</Policy>

#
# End of "$Id: cupsd.conf.in 8805 2009-08-31 16:34:06Z mike $".
#

Ich habe beide Dateien mal mit KDiff3 verglichen,
hier die Unterschiede:

  • # Administrator user group...
    SystemGroup lpadmin root
    Group sys
    User lp

  • # Show shared printers on the local network.
    Browsing On
    BrowseAddress @LOCAL
    BrowseOrder allow,deny
    BrowseAllow all
    BrowseLocalProtocols CUPS dnssd

  • # Restrict access to the server...
    <Location />
    Allow @LOCAL
    Order allow,deny
    </Location>

  • # Restrict access to the admin pages...
    <Location /admin>
    Allow @LOCAL
    Order allow,deny
    </Location>

  • # Restrict access to configuration files...
    <Location /admin/conf>
    Allow @LOCAL
    AuthType Default
    Require user @SYSTEM
    Order allow,deny
    </Location>

Die farblich hervorgehobenen Änderungen fehlen bei Dir,
bzw. die # Administrator user group... hat eine andere Gruppenverteilung.

Warum das im update bei Dir offenbar geändert wurde, weiß ich nicht.
 
S

Sauerland

Ultimate Guru
Was sagt:
Code: 
cat /etc/hosts
Teilauszug aus meiner:
Code: 
cat /etc/hosts
#
# hosts         This file describes a number of hostname-to-address
#               mappings for the TCP/IP subsystem.  It is mostly
#               used at boot time, when no name servers are running.
#               On small systems, this file can be used instead of a
#               "named" name server.
# Syntax:
#    
# IP-Address  Full-Qualified-Hostname  Short-Hostname
#

127.0.0.1       localhost
127.0.0.2       linux64.site linux64
 
OP
flying_rio

flying_rio

Member
Sauerland schrieb:
Was sagt:
Code: 
cat /etc/hosts
Zum Vergrößern anklicken....
Bei mir sieht das so aus:
Code: 
#
# hosts         This file describes a number of hostname-to-address
#               mappings for the TCP/IP subsystem.  It is mostly
#               used at boot time, when no name servers are running.
#               On small systems, this file can be used instead of a
#               "named" name server.
# Syntax:
#    
# IP-Address  Full-Qualified-Hostname  Short-Hostname
#

127.0.0.1       localhost
127.0.0.2       linux-ydmv.site linux-ydmv

# special IPv6 addresses
#::1             localhost ipv6-localhost ipv6-loopback

#fe00::0         ipv6-localnet

#ff00::0         ipv6-mcastprefix
#ff02::1         ipv6-allnodes
#ff02::2         ipv6-allrouters
#ff02::3         ipv6-allhosts
Ich habe bei mir IPv6 deaktiviert.

Pitti 1 schrieb:
Code: 
Die farblich hervorgehobenen Änderungen fehlen bei Dir, 
bzw. die # [i]Administrator user group...[/i] hat eine andere Gruppenverteilung.

Warum das im update bei Dir offenbar geändert wurde, weiß ich nicht.
Zum Vergrößern anklicken....
Was bedeutet das denn jetzt? Sollte ich die Einträge jetzt anpassen, oder lieber alles so lassen?
 
OP
flying_rio

flying_rio

Member
Also die Lösung habe ich gefunden, indem ich bei den Yast=>Netzwerkeinstellungen auf ifup umgestellt habe und das Routing angepasst habe.
127.0.0.1 127.0.0.0 255.0.0.0 lo
Zum Vergrößern anklicken....

Die Frage die sich mir noch stellt, wo befindet sich eigentlich die Datei route.conf?
 
Du musst dich einloggen oder registrieren, um hier zu antworten.
Oben