samba/cifs password visable

An outside printer-server has been installed via samba/cifs
on a small internal network that runs under opensuse 11.2.
The printer-server works, however, the passwd to access
the printer server is not encrypted in /etc/cups/printers.conf.
Even worse, the passwd can be read by an ordinary user on the
internal network via lpstat -s or http://localhost:631.
This is a serious security bug.