2 <!-- SECTION: References -->
4 <TITLE>cupsd.conf
</TITLE>
9 <P>The
<VAR>/etc/cups/cupsd.conf
</VAR> file contains
10 configuration
<I>directives
</I> that control how the server
11 functions. Each directive is listed on a line by itself followed
12 by its value. Comments are introduced using the number sign (
"#")
13 character at the beginning of a line.
</P>
15 <P>Since the server configuration file consists of plain text,
16 you can use your favorite text editor to make changes to it.
17 After making any changes, restart the
<CODE>cupsd(
8)
</CODE>
18 process using the startup script for your operating system:
</P>
22 <LI>AIX, IRIX, Linux, Solaris:
24 /etc/init.d/cups restart
29 /sbin/init.d/cups restart
34 /System/Library/StartupItems/PrintingServices/PrintingServices restart
39 <P>You can also edit this file from the CUPS web interface, which
40 automatically handles restarting the scheduler.
</P>
43 <H2 CLASS=
"title"><A NAME=
"AccessLog">AccessLog
</A></H2>
48 AccessLog /var/log/cups/access_log
49 AccessLog /var/log/cups/access_log-%s
55 <P>The
<CODE>AccessLog
</CODE> directive sets the name of the
56 access log file. If the filename is not absolute then it is
57 assumed to be relative to the
<A
58 HREF=
"#ServerRoot"><CODE>ServerRoot
</CODE></A> directory. The
59 access log file is stored in
"common log format" and can be used
60 by any web access reporting tool to generate a report on CUPS
63 <P>The server name can be included in the filename by using
64 <CODE>%s
</CODE> in the name.
</P>
66 <P>The special name
"syslog" can be used to send the access
67 information to the system log instead of a plain file.
</P>
69 <P>The default access log file is
70 <VAR>/var/log/cups/access_log
</VAR>.
</P>
73 <H2 CLASS=
"title"><A NAME=
"Allow">Allow
</A></H2>
78 <Location /path
>
82 Allow from *.domain.com
83 Allow from .domain.com
84 Allow from host.domain.com
87 Allow from nnn.nnn.nnn.*
88 Allow from nnn.nnn.nnn.nnn
89 Allow from nnn.nnn.nnn.nnn/mm
90 Allow from nnn.nnn.nnn.nnn/mmm.mmm.mmm.mmm
91 Allow from xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx
99 <P>The
<CODE>Allow
</CODE> directive specifies a hostname, IP
100 address, or network that is allowed access to the server.
101 <CODE>Allow
</CODE> directives are cummulative, so multiple
102 <CODE>Allow
</CODE> directives can be used to allow access for
103 multiple hosts or networks. The
<CODE>/mm
</CODE> notation
104 specifies a CIDR netmask, as shown in Table
1.
</P>
106 <DIV CLASS=
"table"><TABLE SUMMARY=
"CIDR Netmasks">
107 <CAPTION>Table
1:
<A NAME=
"TABLE1">CIDR Netmasks
</A></CAPTION>
109 <TH WIDTH=
"10%">mm
</TH>
110 <TH WIDTH=
"20%">netmask
</TH>
111 <TH WIDTH=
"10%">mm
</TH>
112 <TH WIDTH=
"20%">netmask
</TH>
115 <TD ALIGN=
"CENTER">0</TD>
116 <TD ALIGN=
"CENTER">0.0.0.0</TD>
117 <TD ALIGN=
"CENTER">8</TD>
118 <TD ALIGN=
"CENTER">255.0.0.0</TD>
121 <TD ALIGN=
"CENTER">1</TD>
122 <TD ALIGN=
"CENTER">128.0.0.0</TD>
123 <TD ALIGN=
"CENTER">16</TD>
124 <TD ALIGN=
"CENTER">255.255.0.0</TD>
127 <TD ALIGN=
"CENTER">2</TD>
128 <TD ALIGN=
"CENTER">192.0.0.0</TD>
129 <TD ALIGN=
"CENTER">24</TD>
130 <TD ALIGN=
"CENTER">255.255.255.0</TD>
133 <TD ALIGN=
"CENTER">...
</TD>
134 <TD ALIGN=
"CENTER">...
</TD>
135 <TD ALIGN=
"CENTER">32</TD>
136 <TD ALIGN=
"CENTER">255.255.255.255</TD>
140 <P>The
<CODE>@LOCAL
</CODE> name will allow access from all local
141 interfaces. The
<CODE>@IF(name)
</CODE> name will allow access
142 from the named interface.
</P>
144 <P>The
<CODE>Allow
</CODE> directive must appear inside a
<A
145 HREF=
"#Location"><CODE>Location
</CODE></A> or
<A
146 HREF=
"#Limit"><CODE>Limit
</CODE></A> section.
</P>
149 <H2 CLASS=
"title"><SPAN CLASS=
"info">Deprecated
</SPAN><A NAME=
"AuthClass">AuthClass
</A></H2>
153 <PRE CLASS=
"command">
154 <Location /path
>
165 <P>The
<CODE>AuthClass
</CODE> directive defines what level of
166 authentication is required:
</P>
170 <LI><CODE>Anonymous
</CODE> - No authentication should be
171 performed (default)
</LI>
173 <LI><CODE>User
</CODE> - A valid username and password is
176 <LI><CODE>System
</CODE> - A valid username and password
177 is required, and the username must belong to the
"sys"
178 group; this can be changed using the
<A
179 HREF=
"#SystemGroup"><CODE>SystemGroup
</CODE></A>
182 <LI><CODE>Group
</CODE> - A valid username and password is
183 required, and the username must belong to the group named
185 HREF=
"#AuthGroupName"><CODE>AuthGroupName
</CODE></A>
190 <P>The
<CODE>AuthClass
</CODE> directive must appear inside a
<A
191 HREF=
"#Location"><CODE>Location
</CODE></A> or
<A
192 HREF=
"#Limit"><CODE>Limit
</CODE></A> section.
</P>
194 <P><B>This directive is deprecated and will be removed from a
195 future release of CUPS.
</B> Consider using the more flexible
<A
196 HREF=
"#Require"><CODE>Require
</CODE></A> directive instead.
</P>
199 <H2 CLASS=
"title"><SPAN CLASS=
"info">Deprecated
</SPAN><A NAME=
"AuthGroupName">AuthGroupName
</A></H2>
203 <PRE CLASS=
"command">
204 <Location /path
>
206 AuthGroupName mygroup
213 <P>The
<CODE>AuthGroupName
</CODE> directive sets the group to use
214 for
<CODE>Group
</CODE> authentication.
</P>
216 <P>The
<CODE>AuthGroupName
</CODE> directive must appear inside a
217 <A HREF=
"#Location"><CODE>Location
</CODE></A> or
<A
218 HREF=
"#Limit"><CODE>Limit
</CODE></A> section.
</P>
220 <P><B>This directive is deprecated and will be removed from a
221 future release of CUPS.
</B> Consider using the more flexible
<A
222 HREF=
"#Require"><CODE>Require
</CODE></A> directive instead.
</P>
225 <H2 CLASS=
"title"><A NAME=
"AuthType">AuthType
</A></H2>
229 <PRE CLASS=
"command">
230 <Location /path
>
241 <P>The
<CODE>AuthType
</CODE> directive defines the type of
242 authentication to perform:
</P>
246 <LI><CODE>None
</CODE> - No authentication should be
247 performed (default)
</LI>
249 <LI><CODE>Basic
</CODE> - Basic authentication should be
250 performed using the UNIX password and group files
</LI>
252 <LI><CODE>Digest
</CODE> - Digest authentication should be
253 performed using the
<VAR>/etc/cups/passwd.md5
</VAR>
256 <LI><CODE>BasicDigest
</CODE> - Basic authentication
257 should be performed using the
258 <VAR>/etc/cups/passwd.md5
</VAR> file
</LI>
262 <P>When using
<CODE>Basic
</CODE>,
<CODE>Digest
</CODE>, or
263 <CODE>BasicDigest
</CODE> authentication, clients connecting
264 through the
<CODE>localhost
</CODE> interface can also
265 authenticate using certificates.
</P>
267 <P>The
<CODE>AuthType
</CODE> directive must appear inside a
<A
268 HREF=
"#Location"><CODE>Location
</CODE></A> or
<A
269 HREF=
"#Limit"><CODE>Limit
</CODE></A> section.
</P>
272 <H2 CLASS=
"title"><A NAME=
"AutoPurgeJobs">AutoPurgeJobs
</A></H2>
276 <PRE CLASS=
"command">
283 <P>The
<CODE>AutoPurgeJobs
</CODE> directive specifies whether or
284 not to purge completed jobs once they are no longer required for
285 quotas. This option has no effect if quotas are not enabled. The
286 default setting is
<CODE>No
</CODE>.
</P>
289 <H2 CLASS=
"title"><A NAME=
"BrowseAddress">BrowseAddress
</A></H2>
293 <PRE CLASS=
"command">
294 BrowseAddress
255.255.255.255:
631
295 BrowseAddress
192.0.2.255:
631
296 BrowseAddress host.domain.com:
631
298 BrowseAddress @IF(name)
303 <P>The
<CODE>BrowseAddress
</CODE> directive specifies an address
304 to send browsing information to. Multiple
305 <CODE>BrowseAddress
</CODE> directives can be specified to send
306 browsing information to different networks or systems.
</P>
308 <P>The
<CODE>@LOCAL
</CODE> name will broadcast printer
309 information to all local interfaces. The
<CODE>@IF(name)
</CODE>
310 name will broadcast to the named interface.
</P>
312 <P>There is no default browse address.
</P>
314 <BLOCKQUOTE><B>Note:
</B>
316 <P>If you are using HP-UX
10.20 and a subnet that is not
24,
317 16, or
8 bits, printer browsing (and in fact all broadcast
318 reception) will not work. This problem appears to be fixed in
324 <H2 CLASS=
"title"><A NAME=
"BrowseAllow">BrowseAllow
</A></H2>
328 <PRE CLASS=
"command">
330 BrowseAllow from none
331 BrowseAllow from
192.0.2
332 BrowseAllow from
192.0.2.0/
24
333 BrowseAllow from
192.0.2.0/
255.255.255.0
334 BrowseAllow from *.domain.com
335 BrowseAllow from @LOCAL
336 BrowseAllow from @IF(name)
341 <P>The
<CODE>BrowseAllow
</CODE> directive specifies a system or
342 network to accept browse packets from. The default is to accept
343 browse packets from all hosts.
</P>
345 <P>Host and domain name matching require that you enable the
<A
346 HREF=
"#HostNameLookups"><CODE>HostNameLookups
</CODE></A>
349 <P>IP address matching supports exact matches, partial addresses
350 that match networks using netmasks of
255.0.0.0,
255.255.0.0, and
351 255.255.255.0, or network addresses using the specified netmask
354 <P>The
<CODE>@LOCAL
</CODE> name will allow browse data from all
355 local interfaces. The
<CODE>@IF(name)
</CODE> name will allow
356 browse data from the named interface.
</P>
359 <H2 CLASS=
"title"><A NAME=
"BrowseDeny">BrowseDeny
</A></H2>
363 <PRE CLASS=
"command">
366 BrowseDeny from
192.0.2
367 BrowseDeny from
192.0.2.0/
24
368 BrowseDeny from
192.0.2.0/
255.255.255.0
369 BrowseDeny from *.domain.com
370 BrowseDeny from @LOCAL
371 BrowseDeny from @IF(name)
376 <P>The
<CODE>BrowseDeny
</CODE> directive specifies a system or
377 network to reject browse packets from. The default is to not deny
378 browse packets from any hosts.
</P>
380 <P>Host and domain name matching require that you enable the
<A
381 HREF=
"#HostNameLookups"><CODE>HostNameLookups
</CODE></A>
384 <P>IP address matching supports exact matches, partial addresses
385 that match networks using netmasks of
255.0.0.0,
255.255.0.0, and
386 255.255.255.0, or network addresses using the specified netmask
389 <P>The
<CODE>@LOCAL
</CODE> name will block browse data from all
390 local interfaces. The
<CODE>@IF(name)
</CODE> name will block
391 browse data from the named interface.
</P>
394 <H2 CLASS=
"title"><A NAME=
"BrowseInterval">BrowseInterval
</A></H2>
398 <PRE CLASS=
"command">
405 <P>The
<CODE>BrowseInterval
</CODE> directive specifies the
406 maximum amount of time between browsing updates. Specifying a
407 value of
0 seconds disables outgoing browse updates but allows a
408 server to receive printer information from other hosts.
</P>
410 <P>The
<CODE>BrowseInterval
</CODE> value should always be less
411 than the
<A HREF=
"#BrowseTimeout"><CODE>BrowseTimeout
</CODE></A>
412 value. Otherwise printers and classes will disappear from client
413 systems between updates.
</P>
416 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"BrowseLDAPBindDN">BrowseLDAPBindDN
</A></H2>
420 <PRE CLASS=
"command">
426 <P>The
<CODE>BrowseLDAPBindDN
</CODE> directive specifies the LDAP
427 domain name to use when listening for printer registrations. The
428 default is undefined.
</P>
431 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"BrowseLDAPDN">BrowseLDAPDN
</A></H2>
435 <PRE CLASS=
"command">
441 <P>The
<CODE>BrowseLDAPDN
</CODE> directive specifies the LDAP
442 domain name to use when registering local shared printers. The
443 default is undefined.
</P>
446 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"BrowseLDAPPassword">BrowseLDAPPassword
</A></H2>
450 <PRE CLASS=
"command">
451 BrowseLDAPPassword foo123
456 <P>The
<CODE>BrowseLDAPPassword
</CODE> directive specifies the
457 access password to use when connecting to the LDAP server. The
458 default is undefined.
</P>
461 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"BrowseLDAPServer">BrowseLDAPServer
</A></H2>
465 <PRE CLASS=
"command">
466 BrowseLDAPServer localhost
471 <P>The
<CODE>BrowseLDAPServer
</CODE> directive specifies the name
472 of the LDAP server to connect to. The default is undefined.
</P>
475 <H2 CLASS=
"title"><A NAME=
"BrowseLocalOptions">BrowseLocalOptions
</A></H2>
479 <PRE CLASS=
"command">
480 BrowseLocalOptions compression=yes
481 BrowseLocalOptions encryption=required
482 BrowseLocalOptions compression=yes
&encryption=required
487 <P>The
<CODE>BrowseLocalOptions
</CODE> directive specifies
488 additional IPP backend options to advertise with local shared
489 printers. The default is to not include any options.
</P>
492 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"BrowseLocalProtocols">BrowseLocalProtocols
</A></H2>
496 <PRE CLASS=
"command">
497 BrowseLocalProtocols all
498 BrowseLocalProtocols none
499 BrowseLocalProtocols cups
500 BrowseLocalProtocols dns-sd
501 BrowseLocalProtocols ldap
502 BrowseLocalProtocols slp
503 BrowseLocalProtocols cups dns-sd
508 <P>The
<CODE>BrowseLocalProtocols
</CODE> directive specifies the
509 protocols to use when advertising local shared printers on the
510 network. Multiple protocols can be specified by separating them
511 with spaces. The default is
<CODE>cups
</CODE>, which is a
512 broadcast-based protocol.
</P>
515 <H2 CLASS=
"title"><A NAME=
"BrowseOrder">BrowseOrder
</A></H2>
519 <PRE CLASS=
"command">
520 BrowseOrder allow,deny
521 BrowseOrder deny,allow
526 <P>The
<CODE>BrowseOrder
</CODE> directive specifies the order of
527 allow/deny processing. The default order is
528 <CODE>deny,allow
</CODE>:
</P>
532 <LI><CODE>allow,deny
</CODE> - Deny browse packets by
533 default, then check
<CODE>BrowseAllow
</CODE> lines
534 followed by
<CODE>BrowseDeny
</CODE> lines.
</LI>
536 <LI><CODE>deny,allow
</CODE> - Allow browse packets by
537 default, then check
<CODE>BrowseDeny
</CODE> lines
538 followed by
<CODE>BrowseAllow
</CODE> lines.
</LI>
543 <H2 CLASS=
"title"><A NAME=
"BrowsePoll">BrowsePoll
</A></H2>
547 <PRE CLASS=
"command">
548 BrowsePoll
192.0.2.2:
631
549 BrowsePoll host.domain.com:
631
554 <P>The
<CODE>BrowsePoll
</CODE> directive polls a server for
555 available printers once every
<A
556 HREF=
"#BrowseInterval"><CODE>BrowseInterval
</CODE></A> seconds.
557 Multiple
<CODE>BrowsePoll
</CODE> directives can be specified to
558 poll multiple servers.
</P>
560 <P>If
<CODE>BrowseInterval
</CODE> is set to
0 then the server is
561 polled once every
30 seconds.
</P>
564 <H2 CLASS=
"title"><A NAME=
"BrowsePort">BrowsePort
</A></H2>
568 <PRE CLASS=
"command">
575 <P>The
<CODE>BrowsePort
</CODE> directive specifies the UDP port number
576 used for browse packets. The default port number is
631.
</P>
578 <BLOCKQUOTE><B>Note:
</B>
580 <P>You must set the
<CODE>BrowsePort
</CODE> to the same value
581 on all of the systems that you want to see.
586 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.10</SPAN><A NAME=
"BrowseProtocols">BrowseProtocols
</A></H2>
590 <PRE CLASS=
"command">
594 BrowseProtocols dns-sd
597 BrowseProtocols cups dns-sd
602 <P>The
<CODE>BrowseProtocols
</CODE> directive specifies the
603 protocols to use when showing and advertising shared printers on
604 the local network. Multiple protocols can be specified by
605 separating them with spaces. The default protocol is
606 <CODE>cups
</CODE>, which is a broadcast-based protocol.
</P>
608 <BLOCKQUOTE><B>Note:
</B>
610 <P>When using the
<CODE>SLP
</CODE> protocol, you must have at least
611 one Directory Agent (DA) server on your network. Otherwise the
612 CUPS scheduler (
<CODE>cupsd
</CODE>) will not respond to client
613 requests for several seconds while polling the network.
</P>
618 <H2 CLASS=
"title"><A NAME=
"BrowseRelay">BrowseRelay
</A></H2>
622 <PRE CLASS=
"command">
623 BrowseRelay
193.0.2.1 192.0.2.255
624 BrowseRelay
193.0.2.0/
255.255.255.0 192.0.2.255
625 BrowseRelay
193.0.2.0/
24 192.0.2.255
626 BrowseRelay *.domain.com
192.0.2.255
627 BrowseRelay host.domain.com
192.0.2.255
632 <P>The
<CODE>BrowseRelay
</CODE> directive specifies source and
633 destination addresses for relaying browsing information from one
634 host or network to another. Multiple
<CODE>BrowseRelay
</CODE>
635 directives can be specified as needed.
</P>
637 <P><CODE>BrowseRelay
</CODE> is typically used on systems that
638 bridge multiple subnets using one or more network interfaces. It
639 can also be used to relay printer information from polled servers
642 <PRE CLASS=
"command">
643 BrowseRelay
127.0.0.1 @LOCAL
646 <P>This effectively provides access to printers on a WAN for all
647 clients on the LAN(s).
</P>
650 <H2 CLASS=
"title"><A NAME=
"BrowseRemoteOptions">BrowseRemoteOptions
</A></H2>
654 <PRE CLASS=
"command">
655 BrowseRemoteOptions compression=yes
656 BrowseRemoteOptions encryption=required
657 BrowseRemoteOptions ?compression=yes
&encryption=required
662 <P>The
<CODE>BrowseRemoteOptions
</CODE> directive specifies
663 additional IPP backend options to include with remote shared
664 printers. If the options string begins with a question mark (?),
665 the options replace any options specified by the remote server.
666 The default is to not include any options.
</P>
669 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"BrowseRemoteProtocols">BrowseRemoteProtocols
</A></H2>
673 <PRE CLASS=
"command">
674 BrowseRemoteProtocols all
675 BrowseRemoteProtocols none
676 BrowseRemoteProtocols cups
677 BrowseRemoteProtocols dns-sd
678 BrowseRemoteProtocols ldap
679 BrowseRemoteProtocols slp
680 BrowseRemoteProtocols cups dns-sd
685 <P>The
<CODE>BrowseRemoteProtocols
</CODE> directive specifies the
686 protocols to use when finding remote shared printers on the
687 network. Multiple protocols can be specified by separating them
688 with spaces. The default is
<CODE>cups
</CODE>, which is a
689 broadcast-based protocol.
</P>
692 <H2 CLASS=
"title"><A NAME=
"BrowseShortNames">BrowseShortNames
</A></H2>
696 <PRE CLASS=
"command">
703 <P>The
<CODE>BrowseShortNames
</CODE> directive specifies whether
704 or not short names are used for remote printers when possible.
705 Short names are just the remote printer name, without the server
706 (
"printer"). If more than one remote printer is detected with the
707 same name, the printers will have long names (
"printer@server1",
708 "printer@server2".)
</P>
710 <P>The default value for this option is
<CODE>Yes
</CODE>.
</P>
713 <H2 CLASS=
"title"><A NAME=
"BrowseTimeout">BrowseTimeout
</A></H2>
717 <PRE CLASS=
"command">
724 <P>The
<CODE>BrowseTimeout
</CODE> directive sets the timeout for
725 printer or class information that is received in browse packets.
726 Once a printer or class times out it is removed from the list of
727 available destinations.
</P>
729 <P>The
<CODE>BrowseTimeout
</CODE> value should always be greater
731 HREF=
"#BrowseInterval"><CODE>BrowseInterval
</CODE></A> value.
732 Otherwise printers and classes will disappear from client systems
736 <H2 CLASS=
"title"><A NAME=
"Browsing">Browsing
</A></H2>
740 <PRE CLASS=
"command">
747 <P>The
<CODE>Browsing
</CODE> directive controls whether or not
748 network printer browsing is enabled. The default setting is
751 <P>This directive does not enable sharing of local printers by
752 itself; you must also use the
<A
753 HREF=
"#BrowseAddress"><CODE>BrowseAddress
</CODE></A> or
<A
754 HREF=
"#BrowseProtocols"><CODE>BrowseProtocols
</CODE></A>
755 directives to advertise local printers to other systems.
</P>
757 <BLOCKQUOTE><B>Note:
</B>
759 <P>If you are using HP-UX
10.20 and a subnet that is not
24,
760 16, or
8 bits, printer browsing (and in fact all broadcast
761 reception) will not work. This problem appears to be fixed in
767 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.7</SPAN><A NAME=
"Classification">Classification
</A></H2>
771 <PRE CLASS=
"command">
773 Classification classified
774 Classification confidential
775 Classification secret
776 Classification topsecret
777 Classification unclassified
782 <P>The
<CODE>Classification
</CODE> directive sets the
783 classification level on the server. When this option is set, at
784 least one of the banner pages is forced to the classification
785 level, and the classification is placed on each page of output.
786 The default is no classification level.
</P>
789 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.10</SPAN><A NAME=
"ClassifyOverride">ClassifyOverride
</A></H2>
793 <PRE CLASS=
"command">
800 <P>The
<CODE>ClassifyOverride
</CODE> directive specifies whether
801 users can override the default classification level on the
802 server. When the server classification is set, users can change
803 the classification using the
<CODE>job-sheets
</CODE> option and
804 can choose to only print one security banner before or after the
805 job. If the
<CODE>job-sheets
</CODE> option is set to
806 <CODE>none
</CODE> then the server default classification is
809 <P>The default is to not allow classification overrides.
</P>
812 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.15</SPAN><A NAME=
"ConfigFilePerm">ConfigFilePerm
</A></H2>
816 <PRE CLASS=
"command">
823 <P>The
<CODE>ConfigFilePerm
</CODE> directive specifies the
824 permissions to use when writing configuration files. The default
828 <H2 CLASS=
"title"><A NAME=
"DataDir">DataDir
</A></H2>
832 <PRE CLASS=
"command">
833 DataDir /usr/share/cups
838 <P>The
<CODE>DataDir
</CODE> directive sets the directory to use
842 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"DefaultAuthType">DefaultAuthType
</A></H2>
846 <PRE CLASS=
"command">
847 DefaultAuthType Basic
848 DefaultAuthType BasicDigest
849 DefaultAuthType Digest
854 <P>The
<CODE>DefaultAuthType
</CODE> directive specifies the type
855 of authentication to use for IPP operations that require a
856 username. The default is
<CODE>Basic
</CODE>.
</P>
859 <H2 CLASS=
"title"><A NAME=
"DefaultCharset">DefaultCharset
</A></H2>
863 <PRE CLASS=
"command">
865 DefaultCharset iso-
8859-
1
866 DefaultCharset windows-
1251
871 <P>The
<CODE>DefaultCharset
</CODE> directive sets the default
872 character set to use for client connections. The default
873 character set is
<CODE>utf-
8</CODE> but is overridden by the
874 character set for the language specified by the client or the
875 <CODE>DefaultLanguage
</CODE> directive.
</P>
878 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"DefaultEncryption">DefaultEncryption
</A></H2>
882 <PRE CLASS=
"command">
883 DefaultEncryption Never
884 DefaultEncryption IfRequested
885 DefaultEncryption Required
890 <P>The
<CODE>DefaultEncryption
</CODE> directive specifies the
891 type of encryption to use when performing authentication. The
892 default is
<CODE>Required
</CODE>.
</P>
895 <H2 CLASS=
"title"><A NAME=
"DefaultLanguage">DefaultLanguage
</A></H2>
899 <PRE CLASS=
"command">
909 <P>The
<CODE>DefaultLanguage
</CODE> directive specifies the
910 default language to use for client connections. Setting the
911 default language also sets the default character set if a
912 language localization file exists for it. The default language
913 is
"en" for English.
</P>
916 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"DefaultPolicy">DefaultPolicy
</A></H2>
920 <PRE CLASS=
"command">
921 DefaultPolicy default
927 <P>The
<CODE>DefaultPolicy
</CODE> directive specifies the default
928 policy to use for IPP operation. The default is
929 <CODE>default
</CODE>.
</P>
932 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"DefaultShared">DefaultShared
</A></H2>
936 <PRE CLASS=
"command">
943 <P>The
<CODE>DefaultShared
</CODE> directive specifies whether
944 printers are shared (published) by default. The default is
945 <CODE>yes
</CODE>.
</P>
948 <H2 CLASS=
"title"><A NAME=
"Deny">Deny
</A></H2>
952 <PRE CLASS=
"command">
953 <Location /path
>
957 Deny from *.domain.com
958 Deny from .domain.com
959 Deny from host.domain.com
962 Deny from nnn.nnn.nnn.*
963 Deny from nnn.nnn.nnn.nnn
964 Deny from nnn.nnn.nnn.nnn/mm
965 Deny from nnn.nnn.nnn.nnn/mmm.mmm.mmm.mmm
966 Deny from xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx
974 <P>The
<CODE>Deny
</CODE> directive specifies a hostname, IP
975 address, or network that is allowed access to the server.
976 <CODE>Deny
</CODE> directives are cummulative, so multiple
977 <CODE>Deny
</CODE> directives can be used to allow access for
978 multiple hosts or networks. The
<CODE>/mm
</CODE> notation
979 specifies a CIDR netmask, a shown in
<A HREF=
"TABLE1">Table
982 <P>The
<CODE>@LOCAL
</CODE> name will deny access from all local
983 interfaces. The
<CODE>@IF(name)
</CODE> name will deny access from
984 the named interface.
</P>
986 <P>The
<CODE>Deny
</CODE> directive must appear inside a
<A
987 HREF=
"#Location"><CODE>Location
</CODE></A> or
<A
988 HREF=
"#Limit"><CODE>Limit
</CODE></A> section.
</P>
991 <H2 CLASS=
"title"><A NAME=
"DocumentRoot">DocumentRoot
</A></H2>
995 <PRE CLASS=
"command">
996 DocumentRoot /usr/share/doc/cups
997 DocumentRoot /foo/bar/doc/cups
1000 <H3>Description
</H3>
1002 <P>The
<CODE>DocumentRoot
</CODE> directive specifies the location
1003 of web content for the HTTP server in CUPS. If an absolute path
1004 is not specified then it is assumed to be relative to the
<A
1005 HREF=
"#ServerRoot"><CODE>ServerRoot
</CODE></A> directory. The
1006 default directory is
<VAR>/usr/share/doc/cups
</VAR>.
</P>
1008 <P>Documents are first looked up in a sub-directory for the
1009 primary language requested by the client (e.g.
1010 <VAR>/usr/share/doc/cups/fr/...
</VAR>) and then directly under
1011 the
<CODE>DocumentRoot
</CODE> directory (e.g.
1012 <VAR>/usr/share/doc/cups/...
</VAR>), so it is possible to
1013 localize the web content by providing subdirectories for each
1014 language needed.
</P>
1017 <H2 CLASS=
"title"><A NAME=
"Encryption">Encryption
</A></H2>
1021 <PRE CLASS=
"command">
1022 <Location /path
>
1025 Encryption IfRequested
1030 <H3>Description
</H3>
1032 <P>The
<CODE>Encryption
</CODE> directive must appear instead a
<A
1033 HREF=
"#Location"><CODE>Location
</CODE></A> or
<A
1034 HREF=
"#Limit"><CODE>Limit
</CODE></A> section and specifies the
1035 encryption settings for that location. The default setting is
1036 <CODE>IfRequested
</CODE> for all locations.
</P>
1039 <H2 CLASS=
"title"><A NAME=
"ErrorLog">ErrorLog
</A></H2>
1043 <PRE CLASS=
"command">
1044 ErrorLog /var/log/cups/error_log
1045 ErrorLog /var/log/cups/error_log-%s
1049 <H3>Description
</H3>
1051 <P>The
<CODE>ErrorLog
</CODE> directive sets the name of the error
1052 log file. If the filename is not absolute then it is assumed to
1053 be relative to the
<A
1054 HREF=
"#ServerRoot"><CODE>ServerRoot
</CODE></A> directory. The
1055 default error log file is
<VAR>/var/log/cups/error_log
</VAR>.
</P>
1057 <P>The server name can be included in the filename by using
1058 <CODE>%s
</CODE> in the name.
</P>
1060 <P>The special name
"syslog" can be used to send the error
1061 information to the system log instead of a plain file.
</P>
1064 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.18</SPAN><A NAME=
"FileDevice">FileDevice
</A></H2>
1068 <PRE CLASS=
"command">
1073 <H3>Description
</H3>
1075 <P>The
<CODE>FileDevice
</CODE> directive determines whether the
1076 scheduler allows new printers to be added using device URIs of
1077 the form
<CODE>file:/filename
</CODE>. File devices are most often
1078 used to test new printer drivers and do not support raw file
1081 <P>The default setting is
<CODE>No
</CODE>.
</P>
1083 <BLOCKQUOTE><B>Note:
</B>
1085 <P>File devices are managed by the scheduler. Since the
1086 scheduler normally runs as the root user, file devices
1087 can be used to overwrite system files and potentially
1088 gain unauthorized access to the system. If you must
1089 create printers using file devices, we recommend that
1090 you set the
<CODE>FileDevice
</CODE> directive to
1091 <CODE>Yes
</CODE> for only as long as you need to add the
1092 printers to the system, and then reset the directive to
1093 <CODE>No
</CODE>.
</P>
1098 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.3</SPAN><A NAME=
"FilterLimit">FilterLimit
</A></H2>
1102 <PRE CLASS=
"command">
1108 <H3>Description
</H3>
1110 <P>The
<CODE>FilterLimit
</CODE> directive sets the maximum cost
1111 of all running job filters. It can be used to limit the number of
1112 filter programs that are run on a server to minimize disk,
1113 memory, and CPU resource problems. A limit of
0 disables filter
1116 <P>An average print to a non-PostScript printer needs a filter
1117 limit of about
200. A PostScript printer needs about half that
1118 (
100). Setting the limit below these thresholds will effectively
1119 limit the scheduler to printing a single job at any time.
</P>
1121 <P>The default limit is
0.
</P>
1124 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.16</SPAN><A NAME=
"FilterNice">FilterNice
</A></H2>
1128 <PRE CLASS=
"command">
1134 <H3>Description
</H3>
1136 <P>The
<CODE>FilterNice
</CODE> directive sets the
<B>nice(
1)
</B>
1137 value to assign to filter processes. The nice value ranges from
1138 0, the highest priority, to
19, the lowest priority. The default
1142 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.3</SPAN><A NAME=
"FontPath">FontPath
</A></H2>
1146 <PRE CLASS=
"command">
1147 FontPath /foo/bar/fonts
1148 FontPath /usr/share/cups/fonts:/foo/bar/fonts
1151 <H3>Description
</H3>
1153 <P>The
<CODE>FontPath
</CODE> directive specifies the font path to
1154 use when searching for fonts. The default font path is
1155 <CODE>/usr/share/cups/fonts
</CODE>.
</P>
1158 <H2 CLASS=
"title"><A NAME=
"Group">Group
</A></H2>
1162 <PRE CLASS=
"command">
1167 <H3>Description
</H3>
1169 <P>The
<CODE>Group
</CODE> directive specifies the UNIX group that
1170 filter and CGI programs run as. The default group is
1171 system-specific but is usually
<CODE>lp
</CODE> or
1172 <CODE>nobody
</CODE>.
</P>
1175 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.10</SPAN><A NAME=
"HideImplicitMembers">HideImplicitMembers
</A></H2>
1179 <PRE CLASS=
"command">
1180 HideImplicitMembers Yes
1181 HideImplicitMembers No
1184 <H3>Description
</H3>
1186 <P>The
<CODE>HideImplicitMembers
</CODE> directive controls
1187 whether the individual printers in an implicit class are hidden
1188 from the user. The default is
<CODE>Yes
</CODE>.
</P>
1190 <P><A HREF=
"#ImplicitClasses"><CODE>ImplicitClasses
</CODE></A>
1191 must be enabled for this directive to have any effect.
</P>
1194 <H2 CLASS=
"title"><A NAME=
"HostNameLookups">HostNameLookups
</A></H2>
1198 <PRE CLASS=
"command">
1201 HostNameLookups Double
1204 <H3>Description
</H3>
1206 <P>The
<CODE>HostNameLookups
</CODE> directive controls whether or
1207 not CUPS looks up the hostname for connecting clients. The
1208 <CODE>Double
</CODE> setting causes CUPS to verify that the
1209 hostname resolved from the address matches one of the addresses
1210 returned for that hostname.
<CODE>Double
</CODE> lookups also
1211 prevent clients with unregistered addresses from connecting to
1214 <P>The default is
<CODE>Off
</CODE> to avoid the potential server
1215 performance problems with hostname lookups. Set this option to
1216 <CODE>On
</CODE> or
<CODE>Double
</CODE> only if absolutely
1220 <H2 CLASS=
"title"><A NAME=
"ImplicitClasses">ImplicitClasses
</A></H2>
1224 <PRE CLASS=
"command">
1229 <H3>Description
</H3>
1231 <P>The
<CODE>ImplicitClasses
</CODE> directive controls whether
1232 implicit classes are created based upon the available network
1233 printers and classes. The default setting is
<CODE>On
</CODE> but
1234 is automatically turned
<CODE>Off
</CODE> if
<A
1235 HREF=
"#Browsing"><CODE>Browsing
</CODE></A> is turned
1236 <CODE>Off
</CODE>.
</P>
1239 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.10</SPAN><A NAME=
"ImplicitAnyClasses">ImplicitAnyClasses
</A></H2>
1243 <PRE CLASS=
"command">
1244 ImplicitAnyClasses On
1245 ImplicitAnyClasses Off
1248 <H3>Description
</H3>
1250 <P>The
<CODE>ImplicitAnyClasses
</CODE> directive controls
1251 whether implicit classes for local and remote printers are
1252 created with the name
<CODE>AnyPrinter
</CODE>. The default
1253 setting is
<CODE>Off
</CODE>.
</P>
1255 <P><A HREF=
"#ImplicitClasses"><CODE>ImplicitClasses
</CODE></A>
1256 must be enabled for this directive to have any effect.
</P>
1259 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.9</SPAN><A NAME=
"Include">Include
</A></H2>
1263 <PRE CLASS=
"command">
1265 Include /foo/bar/filename
1268 <H3>Description
</H3>
1270 <P>The
<CODE>Include
</CODE> directive includes the named file in
1271 the
<CODE>cupsd.conf
</CODE> file. If no leading path is provided,
1272 the file is assumed to be relative to the
<A
1273 HREF=
"#ServerRoot"><CODE>ServerRoot
</CODE></A> directory.
</P>
1276 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"JobRetryInterval">JobRetryInterval
</A></H2>
1280 <PRE CLASS=
"command">
1282 JobRetryInterval
120
1285 <H3>Description
</H3>
1287 <P>The
<CODE>JobRetryInterval
</CODE> directive specifies the
1288 number of seconds to wait before retrying a job. This is
1289 typically used for fax queues but can also be used with normal
1290 print queues whose error policy is
<CODE>retry-job
</CODE>. The
1291 default is
30 seconds.
</P>
1294 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"JobRetryLimit">JobRetryLimit
</A></H2>
1298 <PRE CLASS=
"command">
1303 <H3>Description
</H3>
1305 <P>The
<CODE>JobRetryLimit
</CODE> directive specifies the maximum
1306 number of times the scheduler will try to print a job. This is
1307 typically used for fax queues but can also be used with normal
1308 print queues whose error policy is
<CODE>retry-job
</CODE>. The
1309 default is
5 times.
</P>
1312 <H2 CLASS=
"title"><A NAME=
"KeepAlive">KeepAlive
</A></H2>
1316 <PRE CLASS=
"command">
1321 <H3>Description
</H3>
1323 <P>The
<CODE>KeepAlive
</CODE> directive controls whether or not
1324 to support persistent HTTP connections. The default is
1325 <CODE>On
</CODE>.
</P>
1327 <P>HTTP/
1.1 clients automatically support persistent connections,
1328 while HTTP/
1.0 clients must specifically request them using the
1329 <CODE>Keep-Alive
</CODE> attribute in the
<CODE>Connection:
</CODE>
1330 field of each request.
</P>
1333 <H2 CLASS=
"title"><A NAME=
"KeepAliveTimeout">KeepAliveTimeout
</A></H2>
1337 <PRE CLASS=
"command">
1342 <H3>Description
</H3>
1344 <P>The
<CODE>KeepAliveTimeout
</CODE> directive controls how long
1345 a persistent HTTP connection will remain open after the last
1346 request. The default is
60 seconds.
</P>
1349 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.7</SPAN><A NAME=
"Limit">Limit (Location)
</A></H2>
1353 <PRE CLASS=
"command">
1354 <Location /path
>
1355 <Limit GET POST
>
1365 <H3>Description
</H3>
1367 <P>The
<CODE>Limit
</CODE> directive groups access control
1368 directives for specific types of HTTP requests and must appear
1369 inside a
<A HREF=
"#Location"><CODE>Location
</CODE></A> section.
1370 Access can be limited for individual request types
1371 (
<CODE>DELETE
</CODE>,
<CODE>GET
</CODE>,
<CODE>HEAD
</CODE>,
1372 <CODE>OPTIONS
</CODE>,
<CODE>POST
</CODE>,
<CODE>PUT
</CODE>, and
1373 <CODE>TRACE
</CODE>) or for all request types (
<CODE>ALL
</CODE>).
1374 The request type names are case-sensitive for compatibility with
1378 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"LimitIPP">Limit (Policy)
</A></H2>
1382 <PRE CLASS=
"command">
1384 <Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer
>
1394 <H3>Description
</H3>
1396 <P>When included in
<A HREF=
"#Policy"><CODE>Policy
</CODE></A>
1397 sections, the
<CODE>Limit
</CODE> directive groups access control
1398 directives for specific IPP operations. Multiple operations can
1399 be listed, separated by spaces. Table
2 lists the supported
1402 <DIV CLASS=
"table"><TABLE SUMMARY=
"Supported IPP Operations">
1403 <CAPTION>Table
2:
<A NAME=
"TABLE2">Supported IPP Operations
</A></CAPTION>
1406 <TH>Operation Name
</TH>
1407 <TH>Description
</TH>
1413 <TD>All operations - used as the default limit for
1414 operations that are not listed
</TD>
1418 <TD>Cancel a job
</TD>
1421 <TD>Cancel-Subscription
</TD>
1422 <TD>Cancel a subscription
</TD>
1426 <TD>Create a new, empty job
</TD>
1429 <TD>Create-Job-Subscription
</TD>
1430 <TD>Creates a notification subscription on a job
</TD>
1433 <TD>Create-Printer-Subscription
</TD>
1434 <TD>Creates a notification subscription on a printer
</TD>
1437 <TD>CUPS-Accept-Jobs
</TD>
1438 <TD>Sets the printer-is-accepting-jobs value for a printer to true
</TD>
1441 <TD>CUPS-Add-Modify-Class
</TD>
1442 <TD>Adds or modifies a class
</TD>
1445 <TD>CUPS-Add-Modify-Printer
</TD>
1446 <TD>Adds or modifies a printer
</TD>
1449 <TD>CUPS-Authenticate-Job
</TD>
1450 <TD>Authenticates a job for printing
</TD>
1453 <TD>CUPS-Delete-Class
</TD>
1454 <TD>Deletes a class
</TD>
1457 <TD>CUPS-Delete-Printer
</TD>
1458 <TD>Deletes a printer
</TD>
1461 <TD>CUPS-Get-Classes
</TD>
1462 <TD>Gets a list of classes
</TD>
1465 <TD>CUPS-Get-Default
</TD>
1466 <TD>Gets the (network/server) default printer or class
</TD>
1469 <TD>CUPS-Get-Devices
</TD>
1470 <TD>Gets a list of available devices
</TD>
1473 <TD>CUPS-Get-PPDs
</TD>
1474 <TD>Gets a list of available manufacturers or drivers
</TD>
1477 <TD>CUPS-Get-Printers
</TD>
1478 <TD>Gets a list of printers and/or classes
</TD>
1481 <TD>CUPS-Move-Job
</TD>
1482 <TD>Moves a job to a new destination
</TD>
1485 <TD>CUPS-Reject-Jobs
</TD>
1486 <TD>Sets the printer-is-accepting-jobs value for a printer to false
</TD>
1489 <TD>CUPS-Set-Default
</TD>
1490 <TD>Sets the network/server default printer or class
</TD>
1493 <TD>Disable-Printer
</TD>
1494 <TD>Sets the printer-state value for a printer to stopped
</TD>
1497 <TD>Enable-Printer
</TD>
1498 <TD>Sets the printer-state value for a printer to idle/processing
</TD>
1501 <TD>Get-Job-Attributes
</TD>
1502 <TD>Gets information about a job
</TD>
1506 <TD>Gets a list of jobs
</TD>
1509 <TD>Get-Notifications
</TD>
1510 <TD>Gets a list of events
</TD>
1513 <TD>Get-Printer-Attributes
</TD>
1514 <TD>Gets informaion about a printer or class
</TD>
1517 <TD>Get-Subscription-Attributes
</TD>
1518 <TD>Gets informaion about a notification subscription
</TD>
1521 <TD>Get-Subscriptions
</TD>
1522 <TD>Gets a list of notification subscriptions
</TD>
1526 <TD>Holds a job for printing
</TD>
1529 <TD>Pause-Printer
</TD>
1530 <TD>Sets the printer-state value for a printer to stopped
</TD>
1534 <TD>Creates a job with a single file for printing
</TD>
1538 <TD>Removes all jobs from a printer
</TD>
1541 <TD>Release-Job
</TD>
1542 <TD>Releases a previously held job for printing
</TD>
1545 <TD>Renew-Subscription
</TD>
1546 <TD>Renews a notification subscription
</TD>
1549 <TD>Restart-Job
</TD>
1550 <TD>Reprints a job
</TD>
1553 <TD>Resume-Printer
</TD>
1554 <TD>Sets the printer-stae value for a printer to idle/processing
</TD>
1557 <TD>Send-Document
</TD>
1558 <TD>Adds a file to an job created with Create-Job
</TD>
1561 <TD>Set-Job-Attributes
</TD>
1562 <TD>Changes job options
</TD>
1565 <TD>Validate-Job
</TD>
1566 <TD>Validates job options prior to printing
</TD>
1572 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.7</SPAN><A NAME=
"LimitExcept">LimitExcept
</A></H2>
1576 <PRE CLASS=
"command">
1577 <Location /path
>
1578 <LimitExcept GET POST
>
1580 </LimitExcept
>
1584 <H3>Description
</H3>
1586 <P>The
<CODE>LimitExcept
</CODE> directive groups access control
1587 directives for specific types of HTTP requests and must appear
1588 inside a
<A HREF=
"#Location"><CODE>Location
</CODE></A> section.
1589 Unlike the
<A HREF=
"#Limit"><CODE>Limit
</CODE></A> directive,
1590 <CODE>LimitExcept
</CODE> restricts access for all requests
1591 <I>except
</I> those listed on the
<CODE>LimitExcept
</CODE>
1595 <H2 CLASS=
"title"><A NAME=
"LimitRequestBody">LimitRequestBody
</A></H2>
1599 <PRE CLASS=
"command">
1600 LimitRequestBody
10485760
1601 LimitRequestBody
10m
1605 <H3>Description
</H3>
1607 <P>The
<CODE>LimitRequestBody
</CODE> directive controls the
1608 maximum size of print files, IPP requests, and HTML form data in
1609 HTTP POST requests. The default limit is
0 which disables the
1613 <H2 CLASS=
"title"><A NAME=
"Listen">Listen
</A></H2>
1617 <PRE CLASS=
"command">
1618 Listen
127.0.0.1:
631
1619 Listen
192.0.2.1:
631
1624 <H3>Description
</H3>
1626 <P>The
<CODE>Listen
</CODE> directive specifies a network address
1627 and port to listen for connections. Multiple
<CODE>Listen
</CODE>
1628 directives can be provided to listen on multiple addresses.
</P>
1630 <P>The
<CODE>Listen
</CODE> directive is similar to the
<A
1631 HREF=
"#Port"><CODE>Port
</CODE></A> directive but allows you to
1632 restrict access to specific interfaces or networks.
</P>
1635 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.7</SPAN><A NAME=
"ListenBackLog">ListenBackLog
</A></H2>
1639 <PRE CLASS=
"command">
1644 <H3>Description
</H3>
1646 <P>The
<CODE>ListenBackLog
</CODE> directive sets the maximum
1647 number of pending connections the scheduler will allow. This
1648 normally only affects very busy servers that have reached the
<A
1649 HREF=
"#MaxClients"><CODE>MaxClients
</CODE></A> limit, but can
1650 also be triggered by large numbers of simultaneous connections.
1651 When the limit is reached, the operating system will refuse
1652 additional connections until the scheduler can accept the pending
1653 ones. The default is the OS-defined default limit, typically
1654 either
5 for older operating systems or
128 for newer operating
1658 <H2 CLASS=
"title"><A NAME=
"Location">Location
</A></H2>
1662 <PRE CLASS=
"command">
1667 <Location /admin
>
1671 <Location /admin/conf
>
1675 <Location /admin/log
>
1679 <Location /classes
>
1683 <Location /classes/name
>
1687 <Location /jobs
>
1691 <Location /printers
>
1695 <Location /printers/name
>
1701 <H3>Description
</H3>
1703 <P>The
<CODE>Location
</CODE> directive specifies access control
1704 and authentication options for the specified HTTP resource or
1705 path. The
<A HREF=
"#Allow"><CODE>Allow
</CODE></A>,
<A
1706 HREF=
"#AuthType"><CODE>AuthType
</CODE></A>,
<A
1707 HREF=
"#Deny"><CODE>Deny
</CODE></A>,
<A
1708 HREF=
"#Encryption"><CODE>Encryption
</CODE></A>,
<A
1709 HREF=
"#Limit"><CODE>Limit
</CODE></A>,
<A
1710 HREF=
"#LimitExcept"><CODE>LimitExcept
</CODE></A>,
<A
1711 HREF=
"#Order"><CODE>Order
</CODE></A>,
<A
1712 HREF=
"#Require"><CODE>Require
</CODE></A>, and
<A
1713 HREF=
"#Satisfy"><CODE>Satisfy
</CODE></A> directives may all
1714 appear inside a location.
</P>
1716 <P>Note that more specific resources override the less specific
1717 ones. So the directives inside the
<CODE>/printers/name
</CODE>
1718 location will override ones from
<CODE>/printers
</CODE>.
1719 Directives inside
<CODE>/printers
</CODE> will override ones from
1720 <CODE>/
</CODE>. None of the directives are inherited.
</P>
1722 <DIV CLASS=
"table"><TABLE SUMMARY=
"Common Locaions on the Server">
1723 <CAPTION>Table
3:
<A NAME=
"TABLE3">Common Locations on the Server
</A></CAPTION>
1725 <TR><TH>Location
</TH><TH>Description
</TH></TR>
1728 <TR><TD><CODE>/
</CODE></TD><TD>The path for all get operations (get-printers, get-jobs, etc.)
</TD></TR>
1729 <TR><TD><CODE>/admin
</CODE></TD><TD>The path for all administration operations (add-printer, delete-printer, start-printer, etc.)
</TD></TR>
1730 <TR><TD><CODE>/admin/conf
</CODE></TD><TD>The path for access to the CUPS configuration files (cupsd.conf, client.conf, etc.)
</TD></TR>
1731 <TR><TD><CODE>/admin/log
</CODE></TD><TD>The path for access to the CUPS log files (access_log, error_log, page_log)
</TD></TR>
1732 <TR><TD><CODE>/classes
</CODE></TD><TD>The path for all classes
</TD></TR>
1733 <TR><TD><CODE>/classes/name
</CODE></TD><TD>The resource for class
<CODE>name
</CODE></TD></TR>
1734 <TR><TD><CODE>/jobs
</CODE></TD><TD>The path for all jobs (hold-job, release-job, etc.)
</TD></TR>
1735 <TR><TD><CODE>/jobs/id
</CODE></TD><TD>The resource for job
<CODE>id
</CODE></TD></TR>
1736 <TR><TD><CODE>/printers
</CODE></TD><TD>The path for all printers
</TD></TR>
1737 <TR><TD><CODE>/printers/name
</CODE></TD><TD>The path for printer
<CODE>name
</CODE></TD></TR>
1738 <TR><TD><CODE>/printers/name.ppd
</CODE></TD><TD>The PPD file path for printer
<CODE>name
</CODE></TD></TR>
1743 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.15</SPAN><A NAME=
"LogFilePerm">LogFilePerm
</A></H2>
1747 <PRE CLASS=
"command">
1752 <H3>Description
</H3>
1754 <P>The
<CODE>LogFilePerm
</CODE> directive specifies the
1755 permissions to use when writing configuration files. The default
1759 <H2 CLASS=
"title"><A NAME=
"LogLevel">LogLevel
</A></H2>
1763 <PRE CLASS=
"command">
1776 <H3>Description
</H3>
1778 <P>The
<CODE>LogLevel
</CODE> directive specifies the level of
1779 logging for the
<A HREF=
"#ErrorLog"><CODE>ErrorLog
</CODE></A>
1780 file. The following values are recognized (each level logs
1781 everything under the preceding levels):
</P>
1785 <LI><CODE>none
</CODE> - Log nothing
</LI>
1787 <LI><CODE>emerg
</CODE> - Log emergency conditions that
1788 prevent the server from running
</LI>
1790 <LI><CODE>alert
</CODE> - Log alerts that must be handled
1793 <LI><CODE>crit
</CODE> - Log critical errors that don't
1794 prevent the server from running
</LI>
1796 <LI><CODE>error
</CODE> - Log general errors
</LI>
1798 <LI><CODE>warn
</CODE> - Log errors and warnings
</LI>
1800 <LI><CODE>notice
</CODE> - Log temporary error conditions
</LI>
1802 <LI><CODE>info
</CODE> - Log all requests and state
1803 changes (default)
</LI>
1805 <LI><CODE>debug
</CODE> - Log basic debugging
1808 <LI><CODE>debug2
</CODE> - Log all debugging
1814 <H2 CLASS=
"title"><A NAME=
"MaxClients">MaxClients
</A></H2>
1818 <PRE CLASS=
"command">
1823 <H3>Description
</H3>
1825 <P>The
<CODE>MaxClients
</CODE> directive controls the maximum
1826 number of simultaneous clients that will be allowed by the
1827 server. The default is
100 clients.
</P>
1829 <BLOCKQUOTE><B>Note:
</B>
1831 <P>Since each print job requires a file descriptor for the status
1832 pipe, the scheduler internally limits the
<CODE>MaxClients
</CODE>
1833 value to
1/
3 of the available file descriptors to avoid possible
1834 problems when printing large numbers of jobs.
</P>
1839 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.18</SPAN><A NAME=
"MaxClientsPerHost">MaxClientsPerHost
</A></H2>
1843 <PRE CLASS=
"command">
1844 MaxClientsPerHost
10
1847 <H3>Description
</H3>
1849 <P>The
<CODE>MaxClientsPerHost
</CODE> directive controls the
1850 maximum number of simultaneous clients that will be allowed from
1851 a single host by the server. The default is the
1852 <CODE>MaxClients
</CODE> value.
</P>
1854 <P>This directive provides a small measure of protection against
1855 Denial of Service attacks from a single host.
</P>
1858 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.16</SPAN><A NAME=
"MaxCopies">MaxCopies
</A></H2>
1862 <PRE CLASS=
"command">
1867 <H3>Description
</H3>
1869 <P>The
<CODE>MaxCopies
</CODE> directive controls the maximum
1870 number of copies that a user can print of a job. The default is
1873 <BLOCKQUOTE><B>Note:
</B>
1875 <P>Most HP PCL laser printers internally limit the number of
1882 <H2 CLASS=
"title"><A NAME=
"MaxJobs">MaxJobs
</A></H2>
1886 <PRE CLASS=
"command">
1892 <H3>Description
</H3>
1894 <P>The
<CODE>MaxJobs
</CODE> directive controls the maximum number
1895 of jobs that are kept in memory. Once the number of jobs reaches
1896 the limit, the oldest completed job is automatically purged from
1897 the system to make room for the new one. If all of the known jobs
1898 are still pending or active then the new job will be
1901 <P>Setting the maximum size to
0 disables this functionality. The
1902 default setting is
500.
</P>
1905 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.7</SPAN><A NAME=
"MaxJobsPerPrinter">MaxJobsPerPrinter
</A></H2>
1909 <PRE CLASS=
"command">
1910 MaxJobsPerPrinter
100
1911 MaxJobsPerPrinter
9999
1915 <H3>Description
</H3>
1917 <P>The
<CODE>MaxJobsPerPrinter
</CODE> directive controls the
1918 maximum number of active jobs that are allowed for each printer
1919 or class. Once a printer or class reaches the limit, new jobs
1920 will be rejected until one of the active jobs is completed,
1921 stopped, aborted, or canceled.
</P>
1923 <P>Setting the maximum to
0 disables this functionality. The
1924 default setting is
0.
</P>
1927 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.7</SPAN><A NAME=
"MaxJobsPerUser">MaxJobsPerUser
</A></H2>
1931 <PRE CLASS=
"command">
1937 <H3>Description
</H3>
1939 <P>The
<CODE>MaxJobsPerUser
</CODE> directive controls the maximum
1940 number of active jobs that are allowed for each user. Once a user
1941 reaches the limit, new jobs will be rejected until one of the
1942 active jobs is completed, stopped, aborted, or canceled.
</P>
1944 <P>Setting the maximum to
0 disables this functionality. The
1945 default setting is
0.
</P>
1948 <H2 CLASS=
"title"><A NAME=
"MaxLogSize">MaxLogSize
</A></H2>
1952 <PRE CLASS=
"command">
1958 <H3>Description
</H3>
1960 <P>The
<CODE>MaxLogSize
</CODE> directive controls the maximum
1961 size of each log file. Once a log file reaches or exceeds the
1962 maximum size it is closed and renamed to
<VAR>filename.O
</VAR>.
1963 This allows you to rotate the logs automatically. The default
1964 size is
1048576 bytes (
1MB).
</P>
1966 <P>Setting the maximum size to
0 disables log rotation.
</P>
1969 <H2 CLASS=
"title"><SPAN CLASS=
"info">Deprecated
</SPAN><A NAME=
"MaxRequestSize">MaxRequestSize
</A></H2>
1973 <PRE CLASS=
"command">
1974 MaxRequestSize
10485760
1979 <H3>Description
</H3>
1981 <P>The
<CODE>MaxRequestSize
</CODE> directive controls the maximum
1982 size of print files, IPP requests, and HTML form data in HTTP
1983 POST requests. The default limit is
0 which disables the limit
1986 <P><B>This directive is deprecated and will be removed in a
1987 future CUPS release.
</B> Use the
<A
1988 HREF=
"#LimitRequestBody"><CODE>LimitRequestBody
</CODE></A>
1989 directive instead.
</P>
1992 <H2 CLASS=
"title"><A NAME=
"Order">Order
</A></H2>
1996 <PRE CLASS=
"command">
1997 <Location /path
>
2004 <H3>Description
</H3>
2006 <P>The
<CODE>Order
</CODE> directive defines the default access
2007 control. The following values are supported:
</P>
2011 <LI><CODE>allow,deny
</CODE> - Deny requests by default,
2012 then check the
<A HREF=
"#Allow"><CODE>Allow
</CODE></A>
2013 lines followed by the
<A
2014 HREF=
"#Deny"><CODE>Deny
</CODE></A> lines
</LI>
2016 <LI><CODE>deny,allow
</CODE> - Allow requests by default,
2017 then check the
<A HREF=
"#Deny"><CODE>Deny
</CODE></A>
2018 lines followed by the
<A
2019 HREF=
"#Allow"><CODE>Allow
</CODE></A> lines
</LI>
2023 <P>The
<CODE>Order
</CODE> directive must appear inside a
<A
2024 HREF=
"#Location"><CODE>Location
</CODE></A> or
<A
2025 HREF=
"#Limit"><CODE>Limit
</CODE></A> section.
</P>
2028 <H2 CLASS=
"title"><A NAME=
"PageLog">PageLog
</A></H2>
2032 <PRE CLASS=
"command">
2033 PageLog /var/log/cups/page_log
2034 PageLog /var/log/cups/page_log-%s
2038 <H3>Description
</H3>
2040 <P>The
<CODE>PageLog
</CODE> directive sets the name of the page
2041 log file. If the filename is not absolute then it is assumed to
2042 be relative to the
<A
2043 HREF=
"#ServerRoot"><CODE>ServerRoot
</CODE></A> directory. The
2044 default page log file is
<VAR>/var/log/cups/page_log
</VAR>.
</P>
2046 <P>The server name can be included in the filename by using
2047 <CODE>%s
</CODE> in the name.
</P>
2049 <P>The special name
"syslog" can be used to send the page
2050 information to the system log instead of a plain file.
</P>
2053 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"PassEnv">PassEnv
</A></H2>
2057 <PRE CLASS=
"command">
2058 PassEnv MY_ENV_VARIABLE
2061 <H3>Description
</H3>
2063 <P>The
<CODE>PassEnv
</CODE> directive specifies an environment
2064 variable that should be passed to child processes. Normally, the
2065 scheduler only passes the
<CODE>DYLD_LIBRARY_PATH
</CODE>,
2066 <CODE>LD_ASSUME_KERNEL
</CODE>,
<CODE>LD_LIBRARY_PATH
</CODE>,
2067 <CODE>LD_PRELOAD
</CODE>,
<CODE>NLSPATH
</CODE>,
2068 <CODE>SHLIB_PATH
</CODE>,
<CODE>TZ
</CODE>, and
<CODE>VGARGS
</CODE>
2069 environment variables to child processes.
</P>
2072 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"Policy">Policy
</A></H2>
2076 <PRE CLASS=
"command">
2078 <Limit operation ... operation
>
2081 <Limit operation ... operation
>
2090 <H3>Description
</H3>
2092 <P>The
<CODE>Policy
</CODE> directive specifies IPP operation
2093 access control limits. Each policy contains
1 or more
<A
2094 HREF=
"#LimitIPP"><CODE>Limit
</CODE></A> sections to set the
2095 access control limits for specific operations - user limits,
2096 authentication, encryption, and allowed/denied addresses,
2097 domains, or hosts. The
<CODE><Limit All
></CODE> section
2098 specifies the default access control limits for operations that
2101 <P>Policies are named and associated with printers via the
2102 printer's operation policy setting
2103 (
<CODE>printer-op-policy
</CODE>). The default policy for the
2104 scheduler is specified using the
<A
2105 HREF=
"#DefaultPolicy"><CODE>DefaultPolicy
</CODE></A>
2109 <H2 CLASS=
"title"><A NAME=
"Port">Port
</A></H2>
2113 <PRE CLASS=
"command">
2118 <H3>Description
</H3>
2120 <P>The
<CODE>Port
</CODE> directive specifies a port to listen on.
2121 Multiple
<CODE>Port
</CODE> lines can be specified to listen on
2122 multiple ports. The
<CODE>Port
</CODE> directive is equivalent to
2123 "<CODE>Listen *:nnn</CODE>". The default port is
631.
</P>
2125 <BLOCKQUOTE><B>Note:
</B>
2127 <P>On systems that support IPv6, this directive will bind to both
2128 the IPv4 and IPv6 wildcard address.
</P>
2133 <H2 CLASS=
"title"><A NAME=
"PreserveJobHistory">PreserveJobHistory
</A></H2>
2137 <PRE CLASS=
"command">
2138 PreserveJobHistory On
2139 PreserveJobHistory Off
2142 <H3>Description
</H3>
2144 <P>The
<CODE>PreserveJobHistory
</CODE> directive controls whether
2145 the history of completed, canceled, or aborted print jobs is
2148 <P>A value of
<CODE>On
</CODE> (the default) preserves job
2149 information until the administrator purges it with the
2150 <CODE>cancel
</CODE> command.
</P>
2152 <P>A value of
<CODE>Off
</CODE> removes the job information as
2153 soon as each job is completed, canceled, or aborted.
</P>
2156 <H2 CLASS=
"title"><A NAME=
"PreserveJobFiles">PreserveJobFiles
</A></H2>
2160 <PRE CLASS=
"command">
2162 PreserveJobFiles Off
2165 <H3>Description
</H3>
2167 <P>The
<CODE>PreserveJobFiles
</CODE> directive controls whether
2168 the document files of completed, canceled, or aborted print jobs
2169 are stored on disk.
</P>
2171 <P>A value of
<CODE>On
</CODE> preserves job files until the
2172 administrator purges them with the
<CODE>cancel
</CODE> command.
2173 Jobs can be restarted (and reprinted) as desired until they are
2176 <P>A value of
<CODE>Off
</CODE> (the default) removes the job
2177 files as soon as each job is completed, canceled, or aborted.
</P>
2180 <H2 CLASS=
"title"><A NAME=
"Printcap">Printcap
</A></H2>
2184 <PRE CLASS=
"command">
2186 Printcap /etc/printcap
2187 Printcap /etc/printers.conf
2190 <H3>Description
</H3>
2192 <P>The
<CODE>Printcap
</CODE> directive controls whether or not a
2193 printcap file is automatically generated and updated with a list
2194 of available printers. If specified with no value, then no
2195 printcap file will be generated. The default is to generate a
2196 file named
<VAR>/etc/printcap
</VAR>.
</P>
2198 <P>When a filename is specified (e.g.
<VAR>/etc/printcap
</VAR>),
2199 the printcap file is written whenever a printer is added or
2200 removed. The printcap file can then be used by applications that
2201 are hardcoded to look at the printcap file for the available
2205 <H2 CLASS=
"title"><A NAME=
"PrintcapFormat">PrintcapFormat
</A></H2>
2209 <PRE CLASS=
"command">
2211 PrintcapFormat Solaris
2214 <H3>Description
</H3>
2216 <P>The
<CODE>PrintcapFormat
</CODE> directive controls the output
2217 format of the printcap file. The default is to generate a BSD
2221 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.13</SPAN><A NAME=
"PrintcapGUI">PrintcapGUI
</A></H2>
2225 <PRE CLASS=
"command">
2226 PrintGUI /usr/bin/glpoptions
2229 <H3>Description
</H3>
2231 <P>The
<CODE>PrintcapGUI
</CODE> directive sets the program to
2232 associate with the IRIX printer GUI interface script which is
2233 used by IRIX applications to display printer-specific options.
2234 There is no default program.
</P>
2237 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.21</SPAN><A NAME=
"ReloadTimeout">ReloadTimeout
</A></H2>
2241 <PRE CLASS=
"command">
2246 <H3>Description
</H3>
2248 <P>The
<CODE>ReloadTimeout
</CODE> directive specifies the number
2249 of seconds the scheduler will wait for active jobs to complete
2250 before doing a restart. The default is
60 seconds.
</P>
2253 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.3</SPAN><A NAME=
"RemoteRoot">RemoteRoot
</A></H2>
2257 <PRE CLASS=
"command">
2262 <H3>Description
</H3>
2264 <P>The
<CODE>RemoteRoot
</CODE> directive sets the username for
2265 unauthenticated root requests from remote hosts. The default
2266 username is
<VAR>remroot
</VAR>. Setting
<CODE>RemoteRoot
</CODE>
2267 to
<VAR>root
</VAR> effectively disables this security
2271 <H2 CLASS=
"title"><A NAME=
"RequestRoot">RequestRoot
</A></H2>
2275 <PRE CLASS=
"command">
2276 RequestRoot /var/spool/cups
2277 RequestRoot /foo/bar/spool/cups
2280 <H3>Description
</H3>
2282 <P>The
<CODE>RequestRoot
</CODE> directive sets the directory for
2283 incoming IPP requests and HTML forms. If an absolute path is not
2284 provided then it is assumed to be relative to the
<A
2285 HREF=
"#ServerRoot"><CODE>ServerRoot
</CODE></A> directory. The
2286 default request directory is
<VAR>/var/spool/cups
</VAR>.
</P>
2289 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.7</SPAN><A NAME=
"Require">Require
</A></H2>
2293 <PRE CLASS=
"command">
2294 <Location /path
>
2296 Require group foo bar
2297 Require user john mary
2299 Require user @groupname
2300 Require user @SYSTEM
2305 <H3>Description
</H3>
2307 <P>The
<CODE>Require
</CODE> directive specifies that
2308 authentication is required for the resource. The
2309 <CODE>group
</CODE> keyword specifies that the authenticated user
2310 must be a member of one or more of the named groups that
2313 <P>The
<CODE>user
</CODE> keyboard specifies that the
2314 authenticated user must be one of the named users or groups that
2315 follow. Group names are specified using the
"@" prefix.
</P>
2317 <P>The
<CODE>valid-user
</CODE> keyword specifies that any
2318 authenticated user may access the resource.
</P>
2320 <P>The default is to do no authentication. This directive must
2321 appear inside a
<A HREF=
"#Location"><CODE>Location
</CODE></A> or
2322 <A HREF=
"#Limit"><CODE>Limit
</CODE></A> section.
</P>
2325 <H2 CLASS=
"title"><A NAME=
"RIPCache">RIPCache
</A></H2>
2329 <PRE CLASS=
"command">
2335 <H3>Description
</H3>
2337 <P>The
<CODE>RIPCache
</CODE> directive sets the size of the
2338 memory cache used by Raster Image Processor (
"RIP") filters such
2339 as
<CODE>imagetoraster
</CODE> and
<CODE>pstoraster
</CODE>. The
2340 size can be suffixed with a
"k" for kilobytes,
"m" for megabytes,
2341 or
"g" for gigabytes. The default cache size is
"8m", or
8
2345 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.16</SPAN><A NAME=
"RootCertDuration">RootCertDuration
</A></H2>
2349 <PRE CLASS=
"command">
2351 RootCertDuration
300
2354 <H3>Description
</H3>
2356 <P>The
<CODE>RootCertDuration
</CODE> directive specifies the
2357 number of seconds the
<EM>root certificate
</EM> remains valid.
2358 The scheduler will generate a new certificate as needed when the
2359 number of seconds has expired. If set to
0, the root certificate
2360 is generated only once on startup or on a restart. The default is
2364 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.7</SPAN><A NAME=
"Satisfy">Satisfy
</A></H2>
2368 <PRE CLASS=
"command">
2369 <Location /path
>
2376 <H3>Description
</H3>
2378 <P>The
<CODE>Satisfy
</CODE> directive specifies whether all
2379 conditions must be satisfied to allow access to the resource. If
2380 set to
<CODE>all
</CODE>, then all authentication and access
2381 control conditions must be satified to allow access.
</P>
2383 <P>Setting
<CODE>Satisfy
</CODE> to
<CODE>any
</CODE> allows a user
2384 to gain access if the authentication or access control
2385 requirements are satisfied. For example, you might require
2386 authentication for remote access, but allow local access without
2389 <P>The default is
<CODE>all
</CODE>. This directive must appear
2390 inside a
<A HREF=
"#Location"><CODE>Location
</CODE></A> or
<A
2391 HREF=
"#Limit"><CODE>Limit
</CODE></A> section.
</P>
2394 <H2 CLASS=
"title"><A NAME=
"ServerAdmin">ServerAdmin
</A></H2>
2398 <PRE CLASS=
"command">
2399 ServerAdmin user@host
2400 ServerAdmin root@foo.bar.com
2403 <H3>Description
</H3>
2405 <P>The
<CODE>ServerAdmin
</CODE> directive identifies the email
2406 address for the administrator on the system. By default the
2407 administrator email address is
<CODE>root@server
</CODE>, where
2408 <CODE>server
</CODE> is the
<A
2409 HREF=
"#ServerName"><CODE>ServerName
</CODE></A>.
</P>
2412 <H2 CLASS=
"title"><A NAME=
"ServerBin">ServerBin
</A></H2>
2416 <PRE CLASS=
"command">
2417 ServerBin /usr/lib/cups
2418 ServerBin /foo/bar/lib/cups
2421 <H3>Description
</H3>
2423 <P>The
<CODE>ServerBin
</CODE> directive sets the directory for
2424 server-run executables. If an absolute path is not provided then
2425 it is assumed to be relative to the
<A
2426 HREF=
"#ServerRoot"><CODE>ServerRoot
</CODE></A> directory. The
2427 default executable directory is
<VAR>/usr/lib/cups
</VAR>,
2428 <VAR>/usr/lib32/cups
</VAR>, or
<VAR>/usr/libexec/cups
</VAR>
2429 depending on the operating system.
</P>
2432 <H2 CLASS=
"title"><A NAME=
"ServerCertificate">ServerCertificate
</A></H2>
2436 <PRE CLASS=
"command">
2437 ServerCertificate /etc/cups/ssl/server.crt
2440 <H3>Description
</H3>
2442 <P>The
<CODE>ServerCertificate
</CODE> directive specifies the
2443 location of the SSL certificate file used by the server when
2444 negotiating encrypted connections. The certificate must not be
2445 encrypted (password protected) since the scheduler normally runs
2446 in the background and will be unable to ask for a password.
</P>
2448 <P>The default certificate file is
2449 <VAR>/etc/cups/ssl/server.crt
</VAR>.
</P>
2452 <H2 CLASS=
"title"><A NAME=
"ServerKey">ServerKey
</A></H2>
2456 <PRE CLASS=
"command">
2457 ServerKey /etc/cups/ssl/server.key
2460 <H3>Description
</H3>
2462 <P>The
<CODE>ServerKey
</CODE> directive specifies the location of
2463 the SSL private key file used by the server when negotiating
2464 encrypted connections.
</P>
2466 <P>The default key file is
2467 <VAR>/etc/cups/ssl/server.crt
</VAR>.
</P>
2470 <H2 CLASS=
"title"><A NAME=
"ServerName"></A>ServerName
</H2>
2474 <PRE CLASS=
"command">
2475 ServerName foo.domain.com
2476 ServerName myserver.domain.com
2479 <H3>Description
</H3>
2481 <P>The
<CODE>ServerName
</CODE> directive specifies the hostname
2482 that is reported to clients. By default the server name is the
2486 <H2 CLASS=
"title"><A NAME=
"ServerRoot">ServerRoot
</A></H2>
2490 <PRE CLASS=
"command">
2491 ServerRoot /etc/cups
2492 ServerRoot /foo/bar/cups
2495 <H3>Description
</H3>
2497 <P>The
<CODE>ServerRoot
</CODE> directive specifies the absolute
2498 path to the server configuration and state files. It is also used
2499 to resolve relative paths in the
<VAR>cupsd.conf
</VAR> file. The
2500 default server directory is
<VAR>/etc/cups
</VAR>.
</P>
2503 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.1.21</SPAN><A NAME=
"ServerTokens">ServerTokens
</A></H2>
2507 <PRE CLASS=
"command">
2509 ServerTokens ProductOnly
2512 ServerTokens Minimal
2517 <H3>Description
</H3>
2519 <P>The
<CODE>ServerTokens
</CODE> directive specifies the
2520 information that is included in the
<CODE>Server:
</CODE> header
2521 of all HTTP responses. Table
4 lists the token name along with
2522 the text that is returned. The default is
2523 <CODE>Minimal
</CODE>.
</P>
2525 <DIV CLASS=
"table"><TABLE SUMMARY=
"ServerToken Names and Values">
2526 <CAPTION>Table
4:
<A NAME=
"TABLE4">ServerToken Names and Values
</A></CAPTION>
2536 <TD>No
<CODE>Server:
</CODE> header is returned
</TD>
2539 <TD>ProductOnly
</TD>
2552 <TD>"CUPS 1.2.N" where N is the patch release
</TD>
2556 <TD>"CUPS 1.2.N (UNAME)" where N is the patch release and
2557 UNAME is the output of the
<B>uname(
1)
</B> command
</TD>
2561 <TD>"CUPS 1.2.N (UNAME) IPP/1.1" where N is the patch
2562 release and UNAME is the output of the
<B>uname(
1)
</B>
2569 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"SetEnv">SetEnv
</A></H2>
2573 <PRE CLASS=
"command">
2574 SetEnv PATH /usr/lib/cups/filter:/bin:/usr/bin:/usr/local/bin
2575 SetEnv MY_ENV_VAR foo
2578 <H3>Description
</H3>
2580 <P>The
<CODE>SetEnv
</CODE> directive specifies an environment
2581 variable that should be passed to child processes.
</P>
2584 <H2 CLASS=
"title"><A NAME=
"SSLListen">SSLListen
</A></H2>
2588 <PRE CLASS=
"command">
2589 SSLListen
127.0.0.1:
443
2590 SSLListen
192.0.2.1:
443
2593 <H3>Description
</H3>
2595 <P>The
<CODE>SSLListen
</CODE> directive specifies a network
2596 address and port to listen for secure connections. Multiple
2597 <CODE>SSLListen
</CODE> directives can be provided to listen on
2598 multiple addresses.
</P>
2600 <P>The
<CODE>SSLListen
</CODE> directive is similar to the
<A
2601 HREF=
"#SSLPort"><CODE>SSLPort
</CODE></A> directive but allows you
2602 to restrict access to specific interfaces or networks.
</P>
2605 <H2 CLASS=
"title"><A NAME=
"SSLPort">SSLPort
</A></H2>
2609 <PRE CLASS=
"command">
2613 <H3>Description
</H3>
2615 <P>The
<CODE>SSLPort
</CODE> directive specifies a port to listen
2616 on for secure connections. Multiple
<CODE>SSLPort
</CODE> lines
2617 can be specified to listen on multiple ports.
</P>
2620 <H2 CLASS=
"title"><A NAME=
"SystemGroup">SystemGroup
</A></H2>
2624 <PRE CLASS=
"command">
2629 SystemGroup root lpadmin
2632 <H3>Description
</H3>
2634 <P>The
<CODE>SystemGroup
</CODE> directive specifies the system
2635 administration group for
<CODE>System
</CODE> authentication.
2636 Multiple groups can be listed, separated with spaces. The default
2637 is system-dependent and generally consists of all of the
2638 following groups, if present:
<CODE>lpadmin
</CODE>,
2639 <CODE>root
</CODE>,
<CODE>sys
</CODE>, and/or
2640 <CODE>system
</CODE>.
</P>
2643 <H2 CLASS=
"title"><A NAME=
"TempDir">TempDir
</A></H2>
2647 <PRE CLASS=
"command">
2649 TempDir /foo/bar/tmp
2652 <H3>Description
</H3>
2654 <P>The
<CODE>TempDir
</CODE> directive specifies an absolute path
2655 for the directory to use for temporary files. The default
2656 directory is
<VAR>/var/spool/cups/tmp
</VAR>.
</P>
2658 <P>Temporary directories must be world-writable and should have
2659 the
"sticky" permission bit enabled so that other users cannot
2660 delete filter temporary files. The following commands will create
2661 an appropriate temporary directory called
2662 <VAR>/foo/bar/tmp
</VAR>:
</P>
2664 <PRE CLASS=
"command">
2665 <KBD>mkdir /foo/bar/tmp
</KBD>
2666 <KBD>chmod a+rwxt /foo/bar/tmp
</KBD>
2670 <H2 CLASS=
"title"><A NAME=
"Timeout">Timeout
</A></H2>
2674 <PRE CLASS=
"command">
2679 <H3>Description
</H3>
2681 <P>The
<CODE>Timeout
</CODE> directive controls the amount of time
2682 to wait before an active HTTP or IPP request times out. The
2683 default timeout is
300 seconds.
</P>
2686 <H2 CLASS=
"title"><SPAN CLASS=
"info">CUPS
1.2</SPAN><A NAME=
"UseNetworkDefault">UseNetworkDefault
</A></H2>
2690 <PRE CLASS=
"command">
2691 UseNetworkDefault yes
2692 UseNetworkDefault no
2695 <H3>Description
</H3>
2697 <P>The
<CODE>UseNetworkDefault
</CODE> directive controls whether
2698 the client will use a network/remote printer as a default
2699 printer. If enabled, the default printer of a server is used as
2700 the default printer on a client. When multiple servers are
2701 advertising a default printer, the client's default printer is
2702 set to the first discovered printer, or to the implicit class for
2703 the same printer available from multiple servers.
</P>
2705 <P>The default is
<CODE>yes
</CODE>.
</P>
2708 <H2 CLASS=
"title"><A NAME=
"User">User
</A></H2>
2712 <PRE CLASS=
"command">
2717 <H3>Description
</H3>
2719 <P>The
<CODE>User
</CODE> directive specifies the UNIX user that
2720 filter and CGI programs run as. The default user is
2721 <CODE>lp
</CODE>.
</P>
2723 <BLOCKQUOTE><B>Note:
</B>
2725 <P>You may not use user
<CODE>root
</CODE>, as that would expose
2726 the system to unacceptable security risks. The scheduler will
2727 automatically choose user
<CODE>nobody
</CODE> if you specify a
2728 user whose ID is
0.
</P>