Bugtraq mailing list archives
Re: Xwindows security?
From: rens () imsi com (Rens Troost)
Date: Wed, 11 Jan 1995 10:19:41 -0500
"Jon" == Jon Peatfield <J.S.Peatfield () amtp cam ac uk> writes:
Jon> Ident is not supposed to be used for authentication I hear Jon> people shout. However, X connections should really only be Jon> made from machines you trust as otherwise anyone with root Jon> access can steal the cookie or pretend to be that user anyway. Jon> I.e. using Ident for this is no worse than admitting that you Jon> must trust the remote host is ok anyway. Right; and it's also no better. But it _is_ more complicated. The magic cookie mechanism is pretty good; if it would allow mutiple cookies access to the server, or krb5 authentication, we'd have all the machanism we needed, fairly simply. -Rens
Current thread:
- Re: Xwindows security? der Mouse (Jan 06)
- Re: Xwindows security? Bennett Todd (Jan 09)
- Re: Xwindows security? Benjamin Fried (Jan 10)
- Re: Xwindows security? Jon Peatfield (Jan 10)
- Re: Xwindows security? Rens Troost (Jan 11)
- Re: Xwindows security? Jon Peatfield (Jan 11)
- Re: Xwindows security? Rens Troost (Jan 11)
- Re: Xwindows security? Jon Peatfield (Jan 11)
- xcrowbar William McVey (Jan 11)
- xcrowbar der Mouse (Jan 11)
- Re: Xwindows security? Dave Kinchlea (Jan 11)
- Re: Xwindows security? Adam Shostack (Jan 11)
- Re: Xwindows security? Darren Reed (Jan 11)
- Re: Xwindows security? Benjamin Fried (Jan 10)
- Re: Xwindows security? Bennett Todd (Jan 09)
- Re: Xwindows security? Jim McCoy (Jan 11)
- Re: Xwindows security? Julian Assange (Jan 13)