Re: Cannot run X over ssh (it's fine now)



On Thursday, September 29th, 2011 at 14:08:29h +0000, Vahis wrote:

But I'm puzzled with How exctly the authorization takes place.

The normal implementation of the Xorg X server is with an MIT magic
cookie file. When you login using the graphical display manager
a file is created in your ${HOME} directory

.Xauthority

This is user based.

From <http://download.oracle.COM/docs/cd/E19683-01/806-7612/network-15/index.html>

QUOTE

MIT-MAGIC-COOKIE-1

The MIT-MAGIC-COOKIE-1 authorization protocol was developed by the Massachusetts Institute of Technology.

At server startup, a magic cookie is created for the server and the user who started the system.

On every connection attempt, the user's client sends the magic cookie to the server as part of the
connection packet. This magic cookie is compared with the servers' magic cookie.

The connection is allowed if the magic cookies match, or denied if they do not match.

UNQUOTE

So where and how is this authorization controlled.

Access by other hosts (including other users on the same machine)
to your DISPLAY on the Xserver currently running
on your machine is controlled with the use of xhost.

xhost +local:

allows access to the DISPLAY via the named socket
so that network connections even from the local host
are denied.

xhost +local

allows access from what is usually the name for the
local non networked connected lo interface 127.0.0.1
so allows network access from other same host users

xhost +

allows absolutely anybody on any network machine to connect

xost -

turns off remote network access.

I'm getting nowhere when sometimes something works and sometimes not. Or
rather on some machines works, others not.

Is that a possibly maybe or maybe not, or only sometimes but never always?

I'm doing this wrong, I'm sure, but how is it supposed to be done?

Could be that your problem is your .Xauthority file has not been
created or has been deleted.

Without any definite information analysis of the problem is
probably always impossible, or sometimes maybe sometimes not.
.



Relevant Pages

  • Re: Outgoing POP3 email missing/lost/not received
    ... Funny thing is that I have had this ISP for 8 years and it has always been ... It looks like when you last ran CEICW, you set the ISP's mail server to: ... Internet Connection Wizard. ... After the wizard completes, the following network connection ...
    (microsoft.public.windows.server.sbs)
  • Re: Outgoing POP3 email missing/lost/not received
    ... ISP's mail server instead of the domain name on the ... SUMMARY OF SETTINGS FOR CONFIGURE E-MAIL AND INTERNET ... Internet Connection Wizard. ... After the wizard completes, the following network connection ...
    (microsoft.public.windows.server.sbs)
  • RE: Problems with Permissions
    ... And SBS server is only take ... the role of an internal server. ... they are all configured to connected to internal network. ... g. Run the Configure Email and Internet Connection Wizard on SBS server. ...
    (microsoft.public.windows.server.sbs)
  • Re: Connection from remote computer to network SQL Server
    ... There is no firewall on the W2K machine acting as the SQL server. ... I tried making the SQL machine a "trusted" on the router. ... connection works. ... To find the IP address of your computer inside the network, ...
    (microsoft.public.access.adp.sqlserver)
  • Re: Networking Question - VLANs on SBS 2003 Premium SP1
    ... be sure you do not enable any DHCP server in internal network. ... You do not get any issue when you connect the SBS to the old router, ... On the Connection Type page, click Broadband, and then click Next. ...
    (microsoft.public.windows.server.sbs)