FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > CentOS > CentOS

 
 
LinkBack Thread Tools
 
Old 04-28-2010, 08:45 PM
Paul Heinlein
 
Default X11 problem with remote login via SSH

On Wed, 28 Apr 2010, Les Mikesell wrote:

>> ForwardX11Trusted yes
>
> Does anyone know what trusted actually means in this context?

>From the xauth(1) man page:

If the trusted option is used, clients that connect using this
authorization will have full run of the display, as usual. If
untrusted is used, clients that connect using this authorization
will be considered untrusted and prevented from stealing or
tampering with data belonging to trusted clients. See the SECURITY
extension specification for full details on the restrictions
imposed on untrusted clients. The default is untrusted.

Anecdotally, I've seen the mismatch symptoms most clearly when running
multipane applications. I *think* the dynamic is that one pane holds
keyboard/mouse focus, another pane cannot take it.

I haven't seen many folks come to the defense of the X Security
Extension, so I'm unsure if there's any real risk to enabling
ForwardX11Trusted anywhere you'd normally ForwardX11 anyway.

The reference document:

http://refspecs.freestandards.org/X11/security.pdf

--
Paul Heinlein <> heinlein@madboa.com <> http://www.madboa.com/
_______________________________________________
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
 

Thread Tools




All times are GMT. The time now is 04:34 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org