On Tuesday 07 October 2014 15:55:28 EBo did opine And Gene did reply: > On Oct 6 2014 7:44 PM, Gene Heskett wrote: > > On Monday 06 October 2014 21:15:45 Jon Elson did opine > > > > And Gene did reply: > >> On 10/06/2014 10:17 AM, Jon Elson wrote: > >> > On 10/06/2014 09:20 AM, Rene Hopf wrote: > >> >> Hi, > >> >> I am wondering how difficult it would be to have a remote > >> > >> display. > >> > >> >> I know linuxcnc can run headless, but how to interact with it? > >> >> It would be nice to have the realtime stuff on a embedded device, > >> >> like the beagleboard, and Axis running on my Desktop. > >> >> X11 forwarding does not really work with OpenGL > >> > > >> > It doesn"t? I use : > >> > ssh -X <user>@1.2.3.4 > >> > >> OK, one way to do this is to ssh into the CNC machine, but > >> instead of using ssh to > >> set up the transport, set the DISPLAY environment variable > >> to point to the client > >> machine, and make sure the client will accept an X > >> connection from the CNC machine. > >> Then, when you start LinuxCNC, it should open a > >> non-encrypted X connection. > >> If you set up a script on the CNC machine, it can all be > >> done in one command. > >> This should get pretty snappy X displays. > >> > >> Jon > > > > Why has no one pointed out that while -X allows x11 forwarding, -Y > > does > > this without the security restrictions. -X could not be made to work > > the > > last time I tried it to one of my buntu machines from a Mandrake > > machine. > > The diff? I was user UID 500 on the Mandrake, and user 1000 on the > > buntu > > boxes. But ssh -Y worked, read the man page. I haven't use -X > > since. > > Just set ForwardX11Trusted yes in the ssh config. > > there is also some weird ssh tunings that can cause problems (for > example it took me a month to figure out why I was not able to work on > the supercomputers, and it was as simple as having my account > permissions set to 760 instead of 700 which ssh considered that a BAD > thing....). If you can track down the ssh config issue, then I would > keep ForwardX11Trusted set to No -- as this helps with someone hacking > into through your display driver, and I would not want some scriptkiddy > poking around and mucking with a machine-tool while it was live just > because I weakened security on X11. Jut my 2c until I knew for sure > that it was not an issue. > > EBo -- > That would be a very important consideration, IF these machines were directly exposed to the script kiddies. Its not, there is a dd-wrt reflashed router with very sharp teeth between me and the real network outside of my little, all paid for domain.
Even if they managed to get in on the wifi, it is set so they can only get out, they can't see my home network from the wifi. And its pass phrase is the first chapter of a mystery novel. Cheers, Gene Heskett -- "There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order." -Ed Howdershelt (Author) Genes Web page <http://geneslinuxbox.net:6309/gene> US V Castleman, SCOTUS, Mar 2014 is grounds for Impeaching SCOTUS ------------------------------------------------------------------------------ Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk _______________________________________________ Emc-developers mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/emc-developers
