Xlib error
Lennart Sorensen
lsorense-1wCw9BSqJbv44Nm34jS7GywD8/FfD2ys at public.gmane.org
Thu Jan 27 16:10:18 UTC 2005
On Wed, Jan 26, 2005 at 11:17:25PM -0500, John Vetterli wrote:
> Well, disabling access control with "xhost +" is considered to be
> insecure, since then anybody who can access your machine's port 6000 (or
> 6001, or 6002, etc. depending on how many X servers you have running)
> could then put their windows on your display, destroy windows that your
> applications are using, take snapshots of your desktop (maybe), or
> change your wallpaper to pictures of Michael Jackson. So "xhost -" is
> the default.
No sane distribution defaults to allowing network connections to X
anymore. Only unix sockets are enabled by default. Of course if you do
enable network connections on your X server then yes xhost + is a very
bad idea.
Lennart Sorensen
--
The Toronto Linux Users Group. Meetings: http://tlug.ss.org
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml
More information about the Legacy
mailing list