On 2014-09-10 14:39:21 -0500, Denis Croombs wrote: > Hi, we have some lisp servers
Wow, Lisp! Er, LTSP. :) > and pc's pxe booting as thin long-running all apps on the ltsp server, > but when we do a vulnerability scan it tells us that it is finding an > x server on each pxe booted device iPhone using port 6007/tcp. 6007 appears to be listed as one of the x11 protocol ports: $ grep 6007 /etc/services x11-7 6007/tcp x11-7 6007/udp > I believed this connection between the pc and the server was over ssh > and therefore secure Anyone got any clue what we have done wrong ? If you're using LDM_DIRECTX, then only the initial authentication goes over ssh, and the rest of the session over insecure X11 protocol. That's a performance vs. security tradeoff to be made. I haven't yet verified for myself if 6007 is open in either the default or LDM_DIRECTX case, but will do so shortly... live well, vagrant
pgp_bgTA8bGWa.pgp
Description: PGP signature
------------------------------------------------------------------------------ Want excitement? Manually upgrade your production database. When you want reliability, choose Perforce Perforce version control. Predictably reliable. http://pubads.g.doubleclick.net/gampad/clk?id=157508191&iu=/4140/ostg.clktrk
_____________________________________________________________________ Ltsp-discuss mailing list. To un-subscribe, or change prefs, goto: https://lists.sourceforge.net/lists/listinfo/ltsp-discuss For additional LTSP help, try #ltsp channel on irc.freenode.net