[lug] how to automate xhost? FC2
D. Stimits
stimits at comcast.net
Wed Mar 9 13:51:23 MST 2005
Lee Woodworth wrote:
> Do you know about the security implications of using xhost instead of
> xauth?
> If the originating machine has multiple users, the other users could
> install
> key event sniffers on the remote machine.
Not relevant.
(a) I'm the only user of both machines;
(b) Each machine has 2 NICs, the NIC used is a non-routable IP exclusive
to those two machines;
(c) They are firewalled extensively at both machines...none will allow
much of anything on the local dedicated NIC (and even less to the
outside world on the 2nd NIC).
One the other hand, if it isn't hard to set up, I wouldn't mind using
xauth instead, but I never spent the time to learn to replace something
that already works. The trouble with security is that just because it
works, it doesn't mean it isn't broken.
D. Stimits, stimits AT comcast DOT net
More information about the LUG
mailing list