TIL CUPS, the print queue server came from Apple and enables a web server by default (port 631) on a lot of #Linux systems. Is this really a good idea?
@tomosaigon It's bound to localhost, (not 127.0.0.1) and inaccessible from the network. It can be *made* so, but it must be explicitly done so.
@nathand the server has to bind to an ip address, not a hostname, so it actually is 127.0.0.1 is it not? Practically speaking, how is it different?
Also, a bug in their web app stack could lead to root privileges, I think, even if it's only locally accessible (which could include random users)...
Fosstodon is an English speaking Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.