On Fri, Apr 21, 2006 at 09:55:04AM -0700, Andrew Sackville-West wrote: > On Fri, Apr 21, 2006 at 07:52:39AM -0500, Greg Norris wrote: > > On Tue, Apr 18, 2006 at 10:43:47AM -0400, Antonio Paiva wrote: > > > Ryan, > > > You probably need to run > > > ---- > > > xhost <address of server> > > > ---- > > > on the client machine. > > > > Someone suggest this virtually every time the topic comes up. It's > > exceptionally bad advice... DON'T DO IT!!! > > Could you enlighten us briefly on why its so bad? honest curiosity > here.
It allows anyone on the specified host access to your X session. Not only does this allow them to open new windows on your screen, but also to read information and capture keystrokes... password sniffing, for example. Do a quick google for "xhost security", and you'll find plenty of descriptions and examples on the first page of results.
signature.asc
Description: Digital signature
