[Bug 1926] use Xephyr for "secure" X-forwarding

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Sat Dec 3 11:04:44 EST 2011


--- Comment #2 from Christoph Anton Mitterer <calestyo at scientia.net> 2011-12-03 11:04:44 EST ---
Yeah,.. I think it would be great... though, I don't yet know, whether
Xephyr is "break-out-secure".

What do you mean with "beyond Linux".
It's part of xorg as far as I can see, so in principle every major
UNIX/Linux should ship it (are there still people using Xfree86?!).

With respect to Windows/MAC/other systems:
These don't have any X [forwarding] support out-of-the box,... so they
don't support the whole thing anyway.

So IMHO this wouldn't be a problem.

And I guess it would be much more useful, if this was integrated in ssh
itself,.. and controllable via config options, e.g. that one can
disable "normal" X11 forwarding completely while allowing the "secure"
Xephyr forwarding.


Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.

More information about the openssh-bugs mailing list