Thank you for the overview.
What are the downsides of the security extension, that it's not enabled
by default. If performance, do you have any idea what the hit is
(before I start re-emerging)?
On 12/23/19 23:31, Rich Freeman wrote:
On Mon, Dec 23, 2019 at 1:15 AM Adam Carter wrote:
The d
On Mon, Dec 23, 2019 at 1:15 AM Adam Carter wrote:
>
>> The difference between -X and -Y is in providing a layer of security
>> so that remote clients can't play games like keyboard sniffing with
>> your local X server.
>
>
> I had conflated those extra checks with .Xauthority.
>
> How would the k
On Mon, Dec 23, 2019 at 4:23 AM n952162 wrote:
>
> My understanding was that this message was due to the lack of an .Xauthority
> file:
>
> Warning: untrusted X11 forwarding setup failed: xauth key data not generated
This is not correct. The problem is that it is trying to set up
trusted forwar
Review:
My understanding was that this message was due to the lack of an
.Xauthority file:
Warning: untrusted X11 forwarding setup failed: xauth key data not generated
Trying to generate one with
xauth generate $DISPLAY .
yielded:
xauth: (argv):1: couldn't query Security extension on displa
-Y still uses an .Xauthority so that isn't a surprise.
> MIT-MAGIC-COOKIE security is used by both -X and -Y, which is what
> this file is used for.
>
> The difference between -X and -Y is in providing a layer of security
> so that remote clients can't play games like keyboard sniffing with
> your
On Sun, Dec 22, 2019 at 8:27 PM Adam Carter wrote:
>
> But -X produces
> "Warning: untrusted X11 forwarding setup failed: xauth key data not generated"
>
> but the server has an ~/.Xauthority file, which oddly gets created by an ssh
> -Y session
-Y still uses an .Xauthority so that isn't a s
>- - xcsecurity : Build Security extension
>
> but I don't find anybody asking why X11 forwarding doesn't work under
> gentoo. What am I missing?
>
> Unless I'm missing something, X11 forwarding works fine for me on Gentoo,
> ssh'ing either to or from an Artix Linux box. Unfortunately, I'm o
On 12/22/19 4:17 PM, n952162 wrote:
xauth(1) says:
/if [the X server] does not support the SECURITY extension, the
[generate] command fails./
The xauth command is used to generate the .Xauthority file, which is
required for X11Forwarding.
But the Security Extension is not enabled by
xauth(1) says:
/if [the X server] does not support the SECURITY extension, the
[generate] command fails./
The xauth command is used to generate the .Xauthority file, which is
required for X11Forwarding.
But the Security Extension is not enabled by default:
- - xcsecurity : Build Securit
9 matches
Mail list logo