In inetd.sec try this instead:
printer deny x.x.x.x
Regarding "...I presume inetd.sec's job is to determine if the service (rlpdaemon)..."
'inetd.sec' is a firewall. It's basically the first firewall upon which all others are based. It still filter's ip packets's by ip address just like all firewalls.
Regarding "...It is my understanding that if a service is not listed it is allowed to run..."
Not entirely true. A listed service can have both allow and deny entries. See the above 'deny' example.
'rlpdaemon' is a sub set of the inetd super daemon and is active as long as required.
See this link:
http://docs.hp.com/cgi-bin/fsearch/framedisplay?top=/hpux/onlinedocs/B3901-90010/B3921-90010_top.html&con=/hpux/onlinedocs/B3921-90010/00/07/746-con.html&toc=/hpux/onlinedocs/B3921-90010/00/07/746-toc.html&searchterms=log%7clpd&queryid=20031112-173618#####################################
Note: lpsched -v for more information recorded in lpd.log.
#####################################
Also, inetd.sec can be replaced with $HOME/.rhosts or /etc/host.equiv for access. See the above link about:
"...When rlpdaemon is not started by inetd(1M) , all requests must come from one of the machines listed in the file /etc/hosts.equiv or /var/spool/lp/.rhosts...."
Support Fatherhood - Stop Family Law
