28 Sep
2024
28 Sep
'24
2:39 p.m.
From: D. Hugh Redelmeier via talk <talk@gtalug.org>
I don't know why anyone thought a big codebase like CUPS ought to run as root. Even after these fixes, the question remains.
Red Hat says that on its systems, cups-browserd runs as the unprivileged user "lp". <https://access.redhat.com/security/vulnerabilities/RHSB-2024-002>