On Wed, Apr 17, 2002 at 06:36:38PM -0700, Kevin Steves wrote: > > for OpenSSH 3.1 we changed the default historical behaviour of using > hostname in $DISPLAY and a wildcard proxy listener. this was done to > increase security and eliminate potential remote attacks directed at > the sshd X11 proxy. >
Cool. It always puzzled me why it was like that in the first place which you have now explained - not using localhost did seem a trifle (well more than a trifle) dodgy from a security standpoint because it opens you to address spoofing and other nastiness. This is a change for the better IMO :-) -- Brett Lymn _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
