Re: X-windows security in Gnome

From: Gregory Leblanc <gleblanc linuxweasel com>
To: gnome-hackers gnome org
Subject: Re: X-windows security in Gnome
Date: 20 May 2002 23:51:46 -0700

On Fri, 2002-05-17 at 10:51, Jim Gettys hp com wrote:
> > 
> > xhost + is generally dumb
> > export DISPLAY=someotherbox:0 is generally dumb too
> > 
> 
> Particularly dumb these days with SSH; one should generally use its
> tunneling facilities to provide encryption (and potentially compression,
> as well).
> 
> It may be good to see if using this extension gets us easy (and transparent
> to applications) support for Kerb5 when installed with fall back to
> magic-cookie; as I said, I've never delved into it.  But the compartmented
> mode security features always struck me as daft.
> 
> What would also be really good would be to get a cleaner integration of
> use of ssh with X applications...  Hmmm....  The potential is there
> to really "do it right" if someone wants to take it on...

Well, nobody from the OpenSSH dev team has any idea what you're hinting
at here (well, at least none of the three or four people who replied to
this post).  They did express enough interest to reply and inquire.
	Greg

-- 
Portland, Oregon, USA.
Please don't copy me on replies to the list.

Follow-Ups:
- Re: X-windows security in Gnome
  - From: Jim.Gettys

References:
- Re: X-windows security in Gnome
  - From: Jim.Gettys

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]