Re: Remote X-term
[EMAIL PROTECTED] (Lee Bradshaw) writes: [...] X has problems with masquerading because the remote end initiates the port connection. If you use redir to redirect the port, you can only support X on one machine inside the firewall. Well, you _could_ redirect port 6001 on the firewall to port 6000 on the second X server and set DISPLAY to firewall:1... With ssh, ssh initiates the encrypted connection and all responses come back over this connection. ssh pulls out the X info and displays it locally. ... but ssh makes it very easy and secure, and is probably better in most cases. -- Carey Evans http://home.clear.net.nz/pages/c.evans/ GNU GPL: The Source will be with you... always. -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Remote X-term
Tim Thomson [EMAIL PROTECTED] writes: Found it: type xhost remote.addr on the local machine before telneting to it. This means *any* user on that machine can use your machine to do things like snooping on passwords you type or sending M-! rm -rf . to your Emacs. Something I used to use at University was like: xauth nextract - $HOSTDISPLAY | rsh -l misc2374 cantua \ xauth remove $HOSTDISPLAY; xauth nmerge - It was actually a bit more complicated because of disagreeing NIS and DNS setups on the X terminals and cantua. The xauth remove bit might be unnecessary on new versions of X too. I can't try it cause I'm behind a IP-MASK'ed firewall. Got to work out how to forward X-win stuff. What port is it on? It's on port 6000. (Try DISPLAY=localhost:0 xeyes sleep 1; netstat -t). The redir program could work as well, to forward port 6000 on the firewall to port 6000 on the real machine. -- Carey Evans http://home.clear.net.nz/pages/c.evans/ GNU GPL: The Source will be with you... always. -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Remote X-term
Carey Evans [EMAIL PROTECTED] wrote: Tim Thomson [EMAIL PROTECTED] writes: Found it: type xhost remote.addr on the local machine before telneting to it. This means *any* user on that machine can use your machine to do things like snooping on passwords you type or sending M-! rm -rf . to your Emacs. Something I used to use at University was like: xauth nextract - $HOSTDISPLAY | rsh -l misc2374 cantua \ xauth remove $HOSTDISPLAY; xauth nmerge - It was actually a bit more complicated because of disagreeing NIS and DNS setups on the X terminals and cantua. The xauth remove bit might be unnecessary on new versions of X too. I can't try it cause I'm behind a IP-MASK'ed firewall. Got to work out how to forward X-win stuff. What port is it on? It's on port 6000. (Try DISPLAY=localhost:0 xeyes sleep 1; netstat -t). The redir program could work as well, to forward port 6000 on the firewall to port 6000 on the real machine. Try something like: xterm -e ssh -l username remotehostname X has problems with masquerading because the remote end initiates the port connection. If you use redir to redirect the port, you can only support X on one machine inside the firewall. With ssh, ssh initiates the encrypted connection and all responses come back over this connection. ssh pulls out the X info and displays it locally. No port problems. Also no authorization problems, because you already have permission to use the local display with your own programs. Thanks everyone who recommended ssh in the past. -- Lee Bradshaw [EMAIL PROTECTED] (preferred) Next Level Communications[EMAIL PROTECTED] -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Remote X-term
Hello! I have access to my university's Sun workstations via ppp connection with my a dynamic IP. I can contact reach the internal network with ftp or telnet and work at prompt mode at every machine I have permission. Is this possible to launch a remote x-term and start working with all that nice X-Windows frontend at the Sun workstations? Can I log on from my home Linux box to the Sun Solaris at office and work exactly as if I was on my chair at the university (well, don't consider a dropped phone line or that noisy and slow connection...)? Thanks, Adalberto da Silva Instituto Astronomico e Geofisico - USP Sao Paulo - SP Brasil -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Remote X-term
Adalberto da Silva wrote: Hello! I have access to my university's Sun workstations via ppp connection with my a dynamic IP. I can contact reach the internal network with ftp or telnet and work at prompt mode at every machine I have permission. Is this possible to launch a remote x-term and start working with all that nice X-Windows frontend at the Sun workstations? Can I log on from my home Linux box to the Sun Solaris at office and work exactly as if I was on my chair at the university (well, don't consider a dropped phone line or that noisy and slow connection...)? Absoluetely. If you are running an X server locally you can telnet over, set DISPLAY=machine:0 in the environment and start any X program and the display will be put on your local server. If XDM is running on the remote you can do a direct query to it from your local machine and login as if on the console. I beleive it's startx -query remotehost or startx -- -query remotehost I forget which one. But the localhost has to be authorized to login to the remote in the /etc/X11/xdm/access file first. -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Remote X-term
On Fri, 16 Jan 1998, Rick Jones wrote: Absoluetely. If you are running an X server locally you can telnet over, set DISPLAY=machine:0 in the environment and start any X program and the display will be put on your local server. You also have to tell your local machine that the remote can access the display, else the server can't connect to the client. Can't remember the file to config, haven't done this for awhile. I want to do this again, with IP-masquerading, I have a 486 behind a 386, and run X-Win on the 486 only. I want remote computers to connect to the 486 - X-Win only. Thanks for any help, Tim. --- Debian/GNU Linux... the maintainable operating system. http://www.debian.org -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Remote X-term
Tim Thomson wrote: You also have to tell your local machine that the remote can access the display, else the server can't connect to the client. Can't remember the file to config, haven't done this for awhile. I want to do this again, with IP-masquerading, I have a 486 behind a 386, and run X-Win on the 486 only. I want remote computers to connect to the 486 - X-Win only. Your right. I haven't don it in quit a while either. I'm pretty sure it's the same file. /etc/X11/xdm/access I'll double check and let you know. -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Remote X-term
Tim: Letting you know that it is not the /etc/X11/xdm/Xaccess file that allows access from remote clients. -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Remote X-term
On Fri, 16 Jan 1998, Rick Jones wrote: Tim: Letting you know that it is not the /etc/X11/xdm/Xaccess file that allows access from remote clients. Found it: type xhost remote.addr on the local machine before telneting to it. I can't try it cause I'm behind a IP-MASK'ed firewall. Got to work out how to forward X-win stuff. What port is it on? Hope this works :-) -Tim. --- Debian/GNU Linux... the maintainable operating system. http://www.debian.org -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Remote X-term
Adalberto da Silva hat gesagt: // Adalberto da Silva wrote: Hello! I have access to my university's Sun workstations via ppp connection with my a dynamic IP. I can contact reach the internal network with ftp or telnet and work at prompt mode at every machine I have permission. Is this possible to launch a remote x-term and start working with all that nice X-Windows frontend at the Sun workstations? Can I log on from my home Linux box to the Sun Solaris at office and work exactly as if I was on my chair at the university (well, don't consider a dropped phone line or that noisy and slow connection...)? I just want to add another and secure solution: ssh If the sun station is running a sshd daemon you could start a remote session with e.g.: [linux]$ xterm -title Your_University -e ssh \ -l YourUsername sunstation.at.college.edu In this new xtern you can start every X app and the very smart ssh displays it on your Linux maschine. Nice test would be: [sunstation]$ xmessage I am not here but there -- Yours a href=http://www.koeln-online.de/einblick/; Frank Barknecht Das Koelner Stadt- und Unimagazin - /a -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Remote X-term
Frank Barknecht [EMAIL PROTECTED] writes: If the sun station is running a sshd daemon you could start a remote session with e.g.: [linux]$ xterm -title Your_University -e ssh \ -l YourUsername sunstation.at.college.edu In this new xtern you can start every X app and the very smart ssh displays it on your Linux maschine. Nice test would be: [sunstation]$ xmessage I am not here but there One further benefit of ssh is that it can compress the connection (with command line switch -C), and thus makes X over slow connection faster. /Tommi Kääriäinen/ -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: Remote X-term
On 16 Jan, Rick Jones wrote: I beleive it's startx -query remotehost or startx -- -query remotehost I forget which one. But the localhost has to be authorized to login to the remote in the /etc/X11/xdm/access file first. As far as I know, you can't use startx (or for that matter xinit or xdm) because it generates a new MIT-MAGIC-COOKIE key on the local host, and thus will deny access to your X server from any remote clients before you have a chance to do an xhost +remotehost. If you want the remote XDM to manage your display, you have to start X bare, like this: X :0 -query remotehost... and of course make sure your ~/.xsession file is set up nicely on the remote host. -- David Huggins-Daines [EMAIL PROTECTED] http://aix2.uottawa.ca/~s1204672 -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .