On Thu, 29 May 2008, Halton Huo wrote: > > Solaris is security by default [1], I suggest you use 'ssh' instead. > On your U-20, did you run 'xhost +' before 'ssh -X'?
Using 'xhost +' is completely the opposite of security since it basically says to disable all security and let anyone use my display (including that xterm left logged in as root). What is the point of using ssh at all if you use 'xhost +'? You might as well be using rsh and rlogin as well or perhaps just post your username and password in your blog. ;-) Speaking of SSH, it seems that the latest Solaris 10 patch for SSH have broken 'ssh -X'. There is apparently a local hijack exploit related to 'ssh -X'. After remote login with 'ssh -X', DISPLAY is not set on the remote Solaris 10 system even though the remote system has 'X11Forwarding yes' in /etc/ssh/sshd_config. Bob ====================================== Bob Friesenhahn bfriesen at simple.dallas.tx.us, http://www.simplesystems.org/users/bfriesen/ GraphicsMagick Maintainer, http://www.GraphicsMagick.org/
