Tim <ignored_mailbox(a)yahoo.com.au> writes:
As others have said, you can reconfigure CUPS so that it doesn't
listen
to the outside world.
As they haven't said, yet, I consider this to be the better approach.
Rather than rely on something else (a firewall) to get in the way,
configure services to be more secure, in themselves.
I can run without a firewall, at all, simply because I don't have things
listening to the world on my systems. I don't, because I'd rather have
two things looking after me, than just one. But it's mostly pointless.
Makes sense. In fact, after following the other advice in this thread
nmap and "lsof -i" now tell me that the only thing listening on my
computer is cups, and it is only listening to local connections.
Thanks for your help.
Jarmo