On Tue, Aug 19, 2003 at 11:46:36AM -0700, Rob Hudson wrote: > On 20030819.1140, Cory Petkovsek said ... > > > _ALL_ that is necessary is making sure this line is in the sshd_config on > > the server: > > X11Forwarding yes > > For a production server, is this something you'd want to be careful > about? Does forwarding X11 open any security concerns?
The user must be authenticated by ssh before the X forwarding is enabled. It depends upon what X applications you have on the system and wether or not you want your users to have access to them. I have X forwarding running on one of my internal servers. I also have it running on a headless, x-less server, and I do run x applications from it occasionally. In short, if you have to ask the question, there are likely other security concerns that you should take care of first, before questioning the security of ssh. The basic security principle is if you don't need it, turn it off. Cory -- Cory Petkovsek Adapting Information Adaptable IT Consulting Technology to your (541) 914-8417 business [EMAIL PROTECTED] www.AdaptableIT.com _______________________________________________ EuG-LUG mailing list [EMAIL PROTECTED] http://mailman.efn.org/cgi-bin/listinfo/eug-lug
