On Tue Jan 29, 2002 at 08:24:30PM +0200, Tzafrir Cohen wrote:

> > > Not really a brand new thing, but with all the MDK releases
> > > I tried (and I remember with Red Hat also..),
> > > the XFree port 6000 is open and listening.
> > > There are indirect security risks with this policy
> > > (DoS, X server freeze), so wouldn't be better to keep
> > > that port closed by default?
> > > Joe User -and Mike PowerUser as well ;-) - don't need
> > > an X server listening.
> > > A "-nolisten tcp" parsed to DEFAULTCLIENTARGS and
> > > DEFAULTSERVERARGS within startx would be enough.
> >
> > I agree.I've forwarded the message and hopefully we can get this
> > fixed by the XFree86 maintainer.
>
> Just one thing:
>
> Make sure that Mike PowerUser can easily enable this back (and that this
> change will not get discarded with the next XFree upgrade), because
> in some places you just can't use ssh for your X connections.

I did mention that it should be easy enough to re-enable, but should
be disabled by default (maybe some /etc/sysconfig setting).

--
MandrakeSoft Security, OpenPGP key available on www.keyserver.net
1024D/FE6F2AFD   88D8 0D23 8D4B 3407 5BD7  66F9 2043 D0E5 FE6F 2AFD

-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org

iD8DBQE8V2YPIEPQ5f5vKv0RAjR3AJ0Qg3N7dUuVr748/1XxX49TM9T6aACg1mMz Wi0/PQCTfPYt+3X5VKvVtP8= =AetL -----END PGP SIGNATURE-----

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]