Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
From: Vincent Danen (vdanenmandrakesoft.com)
Date: Tue Jan 29 2002 - 21:18:39 CST
On Tue Jan 29, 2002 at 08:24:30PM +0200, Tzafrir Cohen wrote:
> > > Not really a brand new thing, but with all the MDK releases
> > > I tried (and I remember with Red Hat also..),
> > > the XFree port 6000 is open and listening.
> > > There are indirect security risks with this policy
> > > (DoS, X server freeze), so wouldn't be better to keep
> > > that port closed by default?
> > > Joe User -and Mike PowerUser as well ;-) - don't need
> > > an X server listening.
> > > A "-nolisten tcp" parsed to DEFAULTCLIENTARGS and
> > > DEFAULTSERVERARGS within startx would be enough.
> > I agree.I've forwarded the message and hopefully we can get this
> > fixed by the XFree86 maintainer.
> Just one thing:
> Make sure that Mike PowerUser can easily enable this back (and that this
> change will not get discarded with the next XFree upgrade), because
> in some places you just can't use ssh for your X connections.
I did mention that it should be easy enough to re-enable, but should
be disabled by default (maybe some /etc/sysconfig setting).
-- MandrakeSoft Security, OpenPGP key available on www.keyserver.net 1024D/FE6F2AFD 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org
iD8DBQE8V2YPIEPQ5f5vKv0RAjR3AJ0Qg3N7dUuVr748/1XxX49TM9T6aACg1mMz Wi0/PQCTfPYt+3X5VKvVtP8= =AetL -----END PGP SIGNATURE-----