three X.org 6.9.0 lame security questions
Zbigniew Luszpinski
zbiggy at o2.pl
Sun Jun 18 19:53:42 UTC 2006
Hi!
I run X with -nolisten tcp parameter to stop X from listening.
This option indeed closed 6000/tcp X11 port but opened instead 37435/tcp port
and keep listening. I tried also remove X magic cookie for tcp/ip proto and
use unix socks but tcp/ip comes back with every startx. Unix socks are
working well and make some small X performance boost but tcp/ip cookie is
still created after lanuching startx. It can be removed after X finishes
loading but it is boring to remove it everytime. Sorry for asking but my
googles are blind and man can't help.
My questions:
1. How to make X really stop listening?
2. How to prevent xauth from making tcp/ip magic cookie? It creates
new .Xauthority file on every startx
3. Where xhost keeps its host records? man xhost tells me it is /etc/X*.hosts
but in lunar there is no such file.
I use module XOrg-test.
have a nice day,
zbiggy
More information about the Lunar
mailing list