> Cookies are just random keys that are assigned to an X session (by > xdm) when you log in. In order to display anything in that session you > have to have that key. > > RedHat and SuSE probably don't enable their use. Under Debian you can > disable them via the xdm configuration file in > /etc/X11/xdm/xdm-config. If you wanted to turn them off you'd set > DisplayManager._0.authorize to false. > > The reason the cookies exist is because X is pretty insecure without > them. It's easy, for example, if you have "xhost + localhost" set for > someone on localhost to capture you're keystrokes in any of your > windows, or take snap shots of your screen.
I want the cookie security so other users can't do anything wrong. I also want "root" to be able to use the X display no matter who is running x. What is the simplest way to achieve this? Helge Hafting