[sane-devel] iptables and saned network scanner / xinetd saned groups
Nick Andrew
nick at nick-andrew.net
Thu Sep 25 06:39:46 UTC 2008
On Wed, Sep 24, 2008 at 12:05:22PM +0200, Jelle de Jong wrote:
> The behind problem was that the 'groups = yes' option was not
> documentation in man saned or the web pages. If this option is not given
> xinetd will strip the scanner group and everything seems to be working
> but the scaned process started by xinetd cant access the device ...
That's because your device is in group 'scanner':
> ls -hal /dev/bus/usb/001/003
> crw-rw---- 1 lp scanner 189, 2 2008-09-24 10:33 /dev/bus/usb/001/003
But you started saned in group 'saned' ...
> service sane-port
> {
> port = 6566
> socket_type = stream
> wait = no
> user = saned
> group = saned
> groups = yes
> server = /usr/sbin/saned
> }
Nick.
More information about the sane-devel
mailing list