Red Hat

I posted the below question on the CUPS forums yesterday and have still not been able to find a good answer of why or if I can keep this from happening.

I have been looking for a while now and have still not found what I am looking for. Is there a way to allow multiple users to be updating the passwd.md5 file via the lpppasswd command? Everytime I make a change with user2 it overwrites the current user list that was made by user1. Also changes the ownership of the passswd.md5 file. Am I missing something or is there a way to allow multiple users to make changes that just update the file not overwrite the other users that were already in the digest file. Thanks in advance for help.

How exactly are you using this command? Show what you're doing word for word, letter for letter, keystroke for keystroke.

How exactly is it mangling the data in the file? Is it removing other users or something? Explain the changes it's doing that it shouldn't be.

That the ownership of the file keeps changing is odd. lppasswd is generally a setuid executable, meaning, runs as root and does its own security checking instead. So the ownership of the file ought to be the same all the time -- root.

I am using the following command to create users as part of the support group I created and am using in my cupsd.conf file. Everything works on the webgui the way I want so I am confident that is setup correctly. This is the syntax: /usr/bin/lppasswd -a -g support <username>. Both OS users that I have used to make changes are not the "Root" user but they both have lp as part of there groups. What happens is as follows. User1 will add user via lppasswd command above. That in turn changes the /etc/cups/passwd.md5 file ownership from root:lp to user1:lp. Then if I try and add a a user via lppasswd with user2 I overwrite the file and it moves what was in the file before to /etc/cups/passwd.old and now the ownership on the passswd.md5 file is user2:lp. Thoughts??? I have went through the cups documentation and have not found anything that is helpful.

It must be replacing the entire file, every single time. Nothing intrinsically wrong with that; some commands use it as a way to prevent two programs writing to the same file simultaneously. The changing ownership shouldn't matter as long as everyone involved can read and write to the lp group. As I mentioned, lppasswd is usually a setuid executable, which is perhaps why this behavior usually isn't noticed -- it'd always create files belonging to its own owner, not the users who call it...

You still have not described how you try to add users, just say that you do, so I can't say whether the way you're using lppasswd is right or wrong.

This is the syntax I use:

/usr/bin/lppasswd -a -g support user1

That is correct?

The information I have doesn't mention -s as an option for lppasswd.

I'm still not entirely clear on what your issue is. Are you complaining that when you add users, other users are removed?

I meant -g no -s. Sorry to many things going on here. Syntax: lppasswd -a -g support user1. Yes, my issue is when I add users with user2, user1's users are removed from the passwd.md5 file.