[681] in Enterprise Print Delivery Team
Re: Kerberized printing from application servers
daemon@ATHENA.MIT.EDU (Rocklyn Clarke)
Fri Nov 10 11:08:09 2000
Date: Fri, 10 Nov 00 10:46:03 EST
From: Rocklyn Clarke <RCLARKE@MIT.EDU>
To: "Lynne E. Durland" <durland@MIT.EDU>
cc: Enterprise Print Delivery Team <printdel@MIT.EDU>
In-Reply-To: <4.3.2.7.2.20001110102104.00b20ec0@po12.mit.edu>
Message-Id: <001110.110622.EST.RCLARKE@MIT.EDU>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Content-Transfer-Encoding: 7BIT
Lynne,
The application servers are not, in general, doing a kerberized lpr, but they
do pass along to the print server the userid of the person on whose behalf
the printing is being done. There is a kludge involved somewhere:
- the lpr running on the application servers
- the lpd running on the Athena print servers
- the lpq running on Athena.
Exactly which of these is "kludged" is on my list of things to determine.
Rocklyn
-------
On Fri, 10 Nov 2000 10:24:53 -0500 you said:
>Rocklyn,
>
>I was just thinking about the printing.....and it came to me that we are
>ASSUMUNG that the application servers will be using lprng for printing and
>therefore kerberos will be involved with the transaction.
>
>I am not sure that is a good assumption. Most of the application servers
>that we are dealing with are compaq alpha's and I am not real sure that the
>lprng has been ported or installed on most of the application
>servers. They will be doing a straight lpr command. So there may be a
>hole in our assumption of all print files coming to plunder and pillage
>will be able to be authenticated.
>
>Food for thought. We can discuss this and it's implications at the Monday
>meeting.
>
>Lynne
>
>
