On Sat, Mar 01, 2003 at 02:49:20PM -0500, [EMAIL PROTECTED] wrote: > Anyone know how to export your display for Remote X Windows via the export > DISPLAY command... if you're behind a router? Must you open ports?
to answer your question, yes, you must open ports if you desire to have normal X11 display connections made from outside. you'd want to redirect port 600x from your router to the machine whose display you wish to attach to (your desktop), for values of 'x' matching your display number (typically 0, possibly 1 or more if you have several x servers running-- which is fairly unlikely unless you specifically set it up that way) X has at least two of its own authentication methods: the easy one which is weak (hostname based, can be compromised if someone can control the DNS responses you get and does not discriminate based on username; using 'xhost(1)'), and the hard one (not really very hard, but harder than xhost. it's setup using 'xauth(1)'. to quote from a good reference i found on this whole topic (http://www.xs4all.nl/~zweije/xauth.html): Xauth has a clear security advantage over xhost. You can limit access to specific users on specific computers. It does not suffer from spoofed addresses as xhost does. And if you want to, you can still use xhost next to it to allow connections. ) the recommendation to just use ssh is still a better idea than either of these (ssh uses xauth, actually, but shields you from its complexity and quirks as well as encrypting your entire session for free). i've heard tell that you can even use some windows ssh clients to do tunnelling for your MSwindows console running an Xwin server, but have never experimented with that myself. luck++; _______________________________________________ Siglinux mailing list [EMAIL PROTECTED] http://www.utacm.org/mailman/listinfo/siglinux
