Adding cups-browsed to all Manjaro ISO

Is there a reason why cups-browsed is not installed by default in Manjaro ISO’s ?

I have had it installed on my ISO for a year, shoot even the Live ISO finds all of the printers and they just work.

When I visit one of my clients, my laptop detects all of the printers at their office and they have a mixed mode of HP, Xerox and Brother, both Inkjet and Laser.

Even scanners are automatically detected.

I would like to submit a request to add cups-browsed and bluez-cups to all Manjaro ISO.

cups-browsed is a service, so it will need to be enabled.

-John

1 Like

+1 But not in the default install, more like a dependency of the manjaro-printer metapackage.

The analogue for scanning should be sane-airscan

1 Like

I don’t believe this is an issue, cups-browsed and sane-airscan both use avahi to discover DNS-SD devices. The reason for my post is so that the average user doesn’t have to deal with configuring printers or hunting down drivers, so not having it enabled by default kind of defeats the purpose.

I think we should add it to the feature request.

For whatever its worth …

And extra notes

I leave it up to the users/devs to decide whether any of that means it “should” be on the ISOs.

4 Likes

@cscs

I was thinking exactly that - close - is it necessary for a default Manjaro system.

For @DeLinuxCo I see it’s benefit and for corporate environments it may be useful.

It could be added as an optional dependency but for the majority user base it would be bloat to include it.

The same goes for scanning - a sane solution would be to add it as an optional dependency - scanlite and simple-scan already is registered as optional dependencies.

2 Likes

Thanks for the explanations. Then it is better be left as is for the end users.

I don’t believe that calling cups-browsed bloat is fair, if you mean that it may increase the ISO image size somewhat ok, say that.

What I am hearing, and I what to understand properly, is that Manjaro is positioned as a more advanced user distro and not for everyday users and newcomers to linux?

That is what I hear, when over and over users on this forum are being sent to the AUR for drivers that don’t exist in the Arch/Manjaro repos when universal IPP printing is available. I really am trying to understand the logic behind not wanting your users, especially new users to not have to deal with configuring something that could be done for them automatically and instantly?

And as a matter of fact, there is no impact on boot time with the service enabled.

Linux Mint doesn’t seem to have an issue with it, it comes pre-installed on LMDE6,

I made my point and went to bat for the user.

FYI: Brother DCP-L2640DW not sure how to install drivers

https://www.pwg.org/ipp/everywhere.html

-John

What would that accomplish?

I had never heard of that before and I had to look it up. Why did you not mention it in your first post?

I’m always happy to make changes based on user feedback. However, at this point, you have not provided enough information to accomplish the goal you are proposing as a feature request. Apparently you did more on your end then you have mentioned here. I’d like to hear more about that.

Thank you for mentioning those details–However, you forgot to link to the source material you quoted from. :wink:

Seems it is from the Bible, i mean, THE Wiki

https://wiki.archlinux.org/title/CUPS

Section 6.5

Thank you @Teo , however that was not the point I was making. :wink:

EDIT: Clarification about who I was replying to. Not sure why Discourse doesn’t show that my previous response was a reply to @Teo. :man_shrugging:

Then what point is being made?

A more direct link …

https://wiki.archlinux.org/title/CUPS#cups-browsed

Its still there, same as when it was first quoted…

We are discussing cups, its the cups arch wiki article…?..

I edited my reply, sorry if it wasn’t clear who I was replying to. Does that help?

I know - one man’s necessity is another man’s bloat.

Manjaro is an easy entry to Arch based Linux - but not an easy entry into Linux.

A wast majority of printer drivers is only packaged for Debian and Red Hat systems.

IPP is already functioning if you enable the avahi-daemon - you don’t need the cups browser service.

Building an ISO is a balancing act between interests - gamers, office, corporate, small business, developers, musicians and the list could go on.

Installing a package to cater for on need may not be ideal for another need.

When the package relies on a service to function - the end result may be an equal challenge for those not wanting that result.

That is why creating a customized ISO is promoted - you did it - targeting office users - that is great - you can provide that ISO to your target group - all well :slight_smile:

Personally I am against adding anything beyond the bare necessities - and that is why the minimal edition exist and what you are suggesting is already being worked with by the Manjaro business entity.

  • Manjaro gaming edition (Orange Pi Neo)
  • Manjaro Immutable for corparate environments
1 Like

Fair enough.

A possible valid reason why we should not enable that service

9 Likes

This request has aged like milk with the recent CVE announcement. Goes to show the value of having a low attack surface.

I’m glad we don’t have this clearly optional and circumstantial service installed by default. I think that if anyone actually needs such a utility, they should need to install this explicitly.

I think under the new circumstances i can safely mark this as a “solution” :slight_smile:

3 Likes

It seems v2.0.1 is affected:

I don’t know about y’all, but all of this attention on this issue and security, I think is a good thing. This will get fixed/remedied and everyone can go on to the next chicken falling from the sky.

This issue was revealed and exposed because the code was freely available to read and understand. Makes you wonder what is lurking in closed systems that only a few can see what really know happens in the background.

VIVA OPEN SOURCE AND FREE SOFTWARE! :grin:

1 Like

According to Ubuntu’s release, if your computer is behind a firewall / NAT router, this attack vector is not an issue. You rPC must be directly on the internet. So for the average user, installing it on their PC , this is not an attack vector, who is not behind a router with their PC’s?

https://ubuntu.com/blog/cups-remote-code-execution-vulnerability-fix-available

Over any network, including the Internet, a legacy UDP-based protocol can be used to register a new printer with a malicious PPD file. This requires the attacker to be able to send a UDP datagram to port 631, handled by cups-browsed, on the target host. A firewall (or NAT router) can prevent this attack vector