On Mon, Jan 07, 2008 at 07:04:42PM -0500, Douglas A. Tutty wrote: > On Mon, Jan 07, 2008 at 11:32:09AM -0800, Ted Unangst wrote: > > On Jan 7, 2008 5:55 AM, Douglas A. Tutty <[EMAIL PROTECTED]> wrote: > > > Right, but when I go from an OpenBSD box via ssh to a debian box to run > > > apps, then that doesn't apply and I don't set ForwardX11Trusted on the > > > OpenBSD box which I use ssh -X and not ssh -Y. > > > > and then firefox doesn't work, which was the whole point of this > > exercise, was it not? > > > I just tested Firefox (Iceweasel) running on Debian and accessed from > OpenBSD, which didn't work. However, Konqueror works just fine, as does > everything else. Makes me wonder what Firefox is trying to do. >
I suppose the only way to have a "trusted-secure" box and an "untrusted-insecure" box with one disply/keyboard would be a KVM. Please tell me that there's no way for a compromised box to do keystroke monitoring of a kvm. Doug.
