HS> I need some help on understanding "X Security Extensions".
HS> This seems to be made up of X server having the -sp option, commands
HS> like xhost, authorization through MIT-MAGIC-COOKIE-1...
I think they are two different things.
xhost, MIT-MAGIC-COOKIE and friends are the X server's access control.
They are various means of making sure that only trusted clients can
connect to your server, and have been around for ever.
The Security Extension, introduced with X11R6.3, I believe, is about
allowing untrusted client to connect to the X server, and keeping them
in a sandbox, i.e. making sure that they only perform ``harmless''
operations. How well that works I don't know, but my gut instinct
would be not to trust it.
HS> Is having X Security properly enabled for a desktop a configuration
HS> issue?
Having proper access control is essential. If you're running on a
single-user machine you might get away with just xhost security, but
using xauth is definitely better. It should be completely transparent.
I've never seen anybody use the security extension, and have yet to
feel the need for it.
HS> Information [...] confidential [...] strictly prohibited.
Sounds exciting.
Juliusz
_______________________________________________
Xpert mailing list
[EMAIL PROTECTED]
http://XFree86.Org/mailman/listinfo/xpert
