On Fri, Apr 21, 2006 at 02:16:51PM -0500, Greg Norris wrote: > On Fri, Apr 21, 2006 at 09:55:04AM -0700, Andrew Sackville-West wrote: > > On Fri, Apr 21, 2006 at 07:52:39AM -0500, Greg Norris wrote: > > > On Tue, Apr 18, 2006 at 10:43:47AM -0400, Antonio Paiva wrote: > > > > Ryan, > > > > You probably need to run > > > > ---- > > > > xhost <address of server> > > > > ---- > > > > on the client machine. > > > > > > Someone suggest this virtually every time the topic comes up. It's > > > exceptionally bad advice... DON'T DO IT!!! > > > > Could you enlighten us briefly on why its so bad? honest curiosity > > here. > > It allows anyone on the specified host access to your X session. Not > only does this allow them to open new windows on your screen, but also > to read information and capture keystrokes... password sniffing, for > example. > > Do a quick google for "xhost security", and you'll find plenty of > descriptions and examples on the first page of results.
thanks A
signature.asc
Description: Digital signature
