On 25-Oct-2002 Matthew Seaman wrote: > On Thu, Oct 24, 2002 at 06:52:32PM -0700, Kris Kennaway wrote: > >> --nolisten-tcp was added deliberately for security reasons: see the >> commit logs (it's also documented clearly at the top of the startx >> manpage). It sounds like an oversight that xdm doesn't do this; I've >> asked the XFree86 maintainer to investigate and make the corresponding >> change if necessary. > > As in: > > --- /usr/X11R6/lib/X11/xdm/Xservers.orig Fri Mar 22 18:30:32 2002 > +++ /usr/X11R6/lib/X11/xdm/Xservers Fri Oct 25 09:23:10 2002 > @@ -10,4 +10,4 @@ > # look like: > # XTerminalName:0 foreign > # > -:0 local /usr/X11R6/bin/X > +:0 local /usr/X11R6/bin/X -nolisten tcp > > A very good move indeed, IMHO.
Would be nice if there could be a 'WITH_TCP' or some such option for the port to enable normal behavior for those people who aren't super paranoid. Having an uber-secure box doesn't do you any good if you can't use it to get actual work done. -- John Baldwin <[EMAIL PROTECTED]> <>< http://www.FreeBSD.org/~jhb/ "Power Users Use the Power to Serve!" - http://www.FreeBSD.org/ To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
