[CentOS] remote ssh to machine how display firefox
Les Mikesell
lesmikesell at gmail.com
Sat Dec 8 18:24:36 UTC 2007
Amos Shapira wrote:
> On 07/12/2007, Karanbir Singh <mail-lists at karan.org> wrote:
>> I am not doubting that -X will mostly work, but perhaps we should be
>> promoting the idea of -Y a bit more.
>
> I'm totally with you about promoting security, but I got the
> impression it's the other way around and -X is the more secure one:
>
> -Y Enables trusted X11 forwarding. Trusted X11 forwardings are not
> subjected to the X11 SECURITY extension controls.
-X is "more secure" in the sense that almost nothing works with it if
trusted forwarding is turned off by default as in the more recent
openssh packages. I still don't have much of a clue what trusted vs.
untrusted forwarding actually means, though.
--
Les Mikesell
lesmikesell at gmail.com
More information about the CentOS
mailing list