Re: X-windows security in Gnome
- From: Gregory Leblanc <gleblanc linuxweasel com>
- To: gnome-hackers gnome org
- Subject: Re: X-windows security in Gnome
- Date: 20 May 2002 23:51:46 -0700
On Fri, 2002-05-17 at 10:51, Jim Gettys hp com wrote:
> >
> > xhost + is generally dumb
> > export DISPLAY=someotherbox:0 is generally dumb too
> >
>
> Particularly dumb these days with SSH; one should generally use its
> tunneling facilities to provide encryption (and potentially compression,
> as well).
>
> It may be good to see if using this extension gets us easy (and transparent
> to applications) support for Kerb5 when installed with fall back to
> magic-cookie; as I said, I've never delved into it. But the compartmented
> mode security features always struck me as daft.
>
> What would also be really good would be to get a cleaner integration of
> use of ssh with X applications... Hmmm.... The potential is there
> to really "do it right" if someone wants to take it on...
Well, nobody from the OpenSSH dev team has any idea what you're hinting
at here (well, at least none of the three or four people who replied to
this post). They did express enough interest to reply and inquire.
Greg
--
Portland, Oregon, USA.
Please don't copy me on replies to the list.
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]