[Techtalk] Security Issue:disallowing external access to X wi
ndows
Rita Starceski
rstarceski at redcreek.com
Fri Sep 14 17:26:20 EST 2001
yes the machine is dedicated for security purposes. It would be very bad
if this system was hacked. I just meant xterm as an example..
I don't want any x connections from outside Xservers - other than console.
thanks!
Rita
-----Original Message-----
From: Julie [mailto:jockgrrl at austin.rr.com]
Sent: Friday, September 14, 2001 8:20 PM
To: Rita Starceski
Cc: 'techtalk at linuxchix.org'
Subject: Re: [Techtalk] Security Issue:disallowing external access to X
windows
Rita Starceski wrote:
>
> Sorry.. didn't mean to sound rude.. deadline at work came up.
No problem -- I have them all the time.
> I do want to keep people from attaching to my Xserver from the outside and
> from using having an Xterm on any machine other than the console.
You can keep people from connecting to your X-server from other
machines by firewalling the ports your X-server uses. The other
is much more difficult, to the point of being virtually
impossible. An xterm is just a TCP/IP client -- it runs a bunch
of code and connects to someone elses X-server. You could firewall
all outbound connections, but then you could get e-mail, use FTP,
rlogin, etc. There is nothing magic about port 6000 (the default
X-server port). And there is nothing magic about the name "xterm".
Is there a specific reason you want this? Perhaps we're trying
to solve the wrong problem?
--
Julianne Frances Haugh Life is either a daring adventure
jockgrrl at austin.rr.com or nothing at all.
-- Helen Keller
More information about the Techtalk
mailing list