what about accessing a serveur via an XDM session ??
-----Message d'origine-----
De: Cort [SMTP:[EMAIL PROTECTED]]
Date: mardi 29 septembre 1998 20:39
�: [EMAIL PROTECTED]
Objet: RE: Is X-Windows a security hole?
On 29-Sep-98 Kuruvilla Chandy wrote:
> Hi,
>
> I have some friends who are setting up a server in their office, they
plan
> to run it on RedHat 5.1 and set it up for dial-in capabilities so that
they
> can work from home.
>
> They told me that they don't plan to install X-Windows on the server as
> they heard that it is a security risk to do so on a dial-in machine, is
> this true? Is there no work-around?
First off, everything is a security risk. The only difference is in how
you
manage it.
If you keep your X server well configured, updated, and keep an eye out
for
possible break-in attempts, then I guess that it will offer no more risk
than
any other server programs.
On the other hand, when you dial into a server from home, the X server
should
be running on the _home_ computer and not the office computer. There's
absolutely no reason to run X on a server computer unless there's someone
there
to view the display. Therefore, by running the X server on the server,
you are
unnecessarily increasing the risk that the server is being exposed to.
I suppose this would be what your friends are refering to. Perhaps
someone
else
may have a thing or two to add to this topic.
Cort
[EMAIL PROTECTED]
