On Sat, 27 Apr 2002, Eliran wrote: > On Sat, Apr 27, 2002 at 12:58:23PM +0300, Yotam Rubin wrote: > > On Sat, Apr 27, 2002 at 12:48:13PM +0300, Eliran wrote: > > > > [snip excessive cruft] > > > > It allways does. Start it with -nolisten tcp flag. > > > > > > Let say I dont, what others can do ? they connect to the machine and ? > > > what are the commands ? > > > > > > > No, not normally, man 7 Xsecurity > > > > I have read an article about remote X using... the remote machine runs the > server and users can connect to it by passing an argument to startx if I remember > correctly... > > How can I know I don't run this server ? and others cant connect to it?
The simple way? ssh X forwarding This means that the ssh client creats a tunnel and tunnels all the X connections from the remote client to the local server. It connets with the local server through unix-domain sockets, so you don't need a listening tcp port. The downside (security-wise) is that you have to trust the ssh daemon on the remote machines, because you allow them to authorize to X clients to connect to your local X server (while you have an establishd ssh connection with them). Anyway, don't forget to use ssh-agent for the whole X session (I believe that Mandrake does this by default, and maybe redhat as well, but if not, it only takes adding an extra script in /etc/X11/xinit.d (The extra script instead of modifying an existing script is to avoid having your modifications being overriden in the next upgrade) <slightly off topic> When I needed to connect from a winnt system with an exceed 6.0 and putty ot a unix server, it seems that I had to use 'xhost +localhost' to allow remote X clients to connect through the tunnel established by the ssh client </sot> -- Tzafrir Cohen mailto:[EMAIL PROTECTED] http://www.technion.ac.il/~tzafrir ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
