On Mon, Oct 23, 2000 at 09:25:58PM +1100, Angus Lees wrote:
Thanks for the suggestions tom and angus,
> redirecting over ssh - probably the most secure. the encryption slows
> things down a bit. automatically running xauth on other machines tends
> to upset the really paranoid, so don't forward X unnecessarily.
I'm a bit paranoid with ssh, to be honest I don't know a lot
about it, but I do use it to forward stuff around that has been
blocked by other peoples firewalls. Can't let them do that to me :)
> xfwp - X proxy for use on gateways. not really an authentication thing
> - more of a firewall/sysadmin thing.
Here I am searching far and wide for possible solutions and there's one right
right in front of me already on my box. I've only briefly looked at the man
page, but it looks interesting.
> lbxproxy, dxpc, etc - compression/caching proxies for low-bandwidth
> (eg: over a modem) X connections. lbxproxy is the "official" X11 LBX
> extension implementation, dxpc is not.
I've used lbxproxy before, its been in the back of my mind.
The idea is to only let certain users through, not just certain ip addresses.
ie, Someone might have a shared PC which only one person requires access, or
someone might be roaming around from PC to PC and needs access from where
ever, or someones PC might be setup with DHCP, etc, etc.
I've also briefly looked at socks, socks5 looks like it might be useful,
maybe not for X, I don't know, but it hasn't hit debian as far as I can see,
I've only got socks4.
--
chesty
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
