[lug] X over ssh

Hugh Brown hugh at vecna.com
Sat Oct 13 21:54:59 MDT 2001 

IIRC, the x setup that you have described is not done over the ssh tunnel,
rather it opens up a connection back to your machine via port 6000 (or
6000+n, for small n).

Try doing ssh -X access_machine and see if that works.  I think the default
on openssh sshd's these days is to deny X forwarding.  You may have to ask
the admin to turn it on.

FWIW,

Hugh

"Ken Weinert"
> 
> 
> --LwW0XdcUbUexiWVK
> Content-Type: text/plain; charset=us-ascii
> Content-Disposition: inline
> Content-Transfer-Encoding: quoted-printable
> 
> I apologize in advance, but I've forgotten who I talked with at the
> meeting Thursday night, but I thought I'd let everyone know I got my X
> over ssh problem solved.
> 
> The setup is this: I want to start X apps on my work machine so they
> show up at home. Since my work machine is behind a firewall, no direct
> connection is possible.
> 
> There is a "portal" machine with sshd set up on it. As it was
> originally set up it only allowed rlogin and telnet
> commands. Yesterday the admin added the ssh program.=20
> 
> now I can do this:
> 
> home: xhost +my.work.ip.address
> home: ssh access_machine
> 
> access_machine: ssh work_machine
> 
> work_machine: declare -x DISPLAY=3Dhome:0
> work_machine: x_program
> 
> and it shows up on my home box with no problem.
> 
> I understand that xauth is better than xhost, but since I'm
> ssh-tunneled from end-to-end, is this a big concern?
> 
> I do know that if I don't do the xhost on my home machine my work
> machince doesn't have permission to open the display. And (which now
> makes sense) if I just telnet/rlogin to my work machine from the
> access machine I don't get X pushed through either.
> 
> --=20
> Ken Weinert   kenw at ihs.com 303-858-6956 (V) 303-705-4258 (F)
> GnuPG KeyID: 9274F1CE           GnuPG available at http://www.gnupg.org/
> GnuPG Key Fingerprint: 1D87 3720 BB77 4489 A928  79D6 F8EC DD76 9274 F1CE
> Does fuzzy logic tickle?
> 
> 
> --LwW0XdcUbUexiWVK
> Content-Type: application/pgp-signature
> Content-Disposition: inline
> 
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.0.3 (GNU/Linux)
> Comment: For info see http://www.gnupg.org
> 
> iEYEARECAAYFAjvIWXcACgkQ+OzddpJ08c6qsgCgnLSjilqoFP1vg80m7z9XvKhl
> HPMAn29pbgJSGG33xyDxytpo2EERpBBx
> =0NIX
> -----END PGP SIGNATURE-----
> 
> --LwW0XdcUbUexiWVK--
> _______________________________________________
> Web Page:  http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> 

------------------------------------
System Administrator/Unix Consultant
hugh at vecna.com
Vecna Technologies, Inc
6525 Belcrest Rd, Suite 612
Hyattsville MD, 20782
301.864.7253
http://www.vecna.com

More information about the LUG mailing list