Bugzilla – Attachment 838 Details for
Bug 987
"man ssh" doesn't mention 'ForwardX11Trusted'
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
mention ForwardX11Trusted in ssh.1
morex11trusted.diff (text/plain), 931 bytes, created by
Damien Miller
on 2005-03-02 13:21:50 AEDT
(
hide
)
Description:
mention ForwardX11Trusted in ssh.1
Filename:
MIME Type:
Creator:
Damien Miller
Created:
2005-03-02 13:21:50 AEDT
Size:
931 bytes
patch
obsolete
> >Index: ssh.1 >=================================================================== >RCS file: /cvs/src/usr.bin/ssh/ssh.1,v >retrieving revision 1.202 >diff -u -p -r1.202 ssh.1 >--- ssh.1 1 Mar 2005 14:47:58 -0000 1.202 >+++ ssh.1 2 Mar 2005 01:54:48 -0000 >@@ -831,10 +831,23 @@ Users with the ability to bypass file pe > (for the user's X authorization database) > can access the local X11 display through the forwarded connection. > An attacker may then be able to perform activities such as keystroke monitoring. >+.Pp >+For this reason, X11 forwarding is subjected X11 SECURITY extension >+restrictions by default. >+Please refer to the >+.Nm >+.Fl Y >+option and the >+.Cm ForwardX11Trusted >+directive in >+.Xr ssh_config 5 >+for more information. > .It Fl x > Disables X11 forwarding. > .It Fl Y > Enables trusted X11 forwarding. >+Trusted X11 forwardings are not subjected to the X11 SECURITY extension >+controls. > .El > .Sh CONFIGURATION FILES > .Nm
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=838">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 987
: 838