ssh -X shop problem...
Craig White
craigwhite at azapple.com
Tue Nov 28 01:59:21 UTC 2006
On Mon, 2006-11-27 at 17:27 -0800, Wolfgang S. Rupprecht wrote:
> Gordon Messmer <yinyang at eburg.com> writes:
> > xhost +localhost
>
> Although one should probably mention that "xhost" could more
> descriptively be called:
>
> allow_keylogging_from +hostname
>
> It basically turns off what little protection X had. Anyone with an
> account at the xhost-ed host can record all the keys you typed from
> that point on.
----
I vaguely recall that Gordon suggested that wasn't the preferred method
of dealing with this but considering that the OP routinely logs in as
root and constantly runs gui as root, it's not as if OP is demonstrating
concerns about security.
Craig
More information about the users
mailing list