On Sun, Dec 22, 2019 at 8:27 PM Adam Carter <adamcart...@gmail.com> wrote: > > But -X produces > "Warning: untrusted X11 forwarding setup failed: xauth key data not generated" > > but the server has an ~/.Xauthority file, which oddly gets created by an ssh > -Y session....
-Y still uses an .Xauthority so that isn't a surprise. MIT-MAGIC-COOKIE security is used by both -X and -Y, which is what this file is used for. The difference between -X and -Y is in providing a layer of security so that remote clients can't play games like keyboard sniffing with your local X server. Whether this ought to be a default was apparently a debate over a decade ago, when the USE flag was at least added to make it possible. I haven't used it in a while though so I can't vouch for whether there are any issues with -X when the USE flag is enabled to build the extension. https://bugs.gentoo.org/237778 -- Rich
