* [gentoo-dev] how to close port 6000 in gentoo
@ 2001-09-11 21:02 Ben Lutgens
2001-09-12 3:18 ` Einar Karttunen
2001-09-12 7:38 ` Mikael Hallendal
0 siblings, 2 replies; 4+ messages in thread
From: Ben Lutgens @ 2001-09-11 21:02 UTC (permalink / raw
To: gentoo-dev
[-- Attachment #1: Type: text/plain, Size: 492 bytes --]
Hi all, by default in gentoo (as well as a few other distros as well) X is
configured to listen on port 6000/tcp for remote X requests, this is a
known security hazard.
If you're using xdm do the following:
edit /etc/X11/xdm/Xservers to say
local /usr/X11R6/bin/X -nolisten tcp
I also recommend not using xfs since X cant handle fonts without it.
--
Ben Lutgens
Sistina Software Inc.
What's the difference between root and God ?
God doesn't think that he is root.
[-- Attachment #2: Type: application/pgp-signature, Size: 232 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [gentoo-dev] how to close port 6000 in gentoo
2001-09-11 21:02 [gentoo-dev] how to close port 6000 in gentoo Ben Lutgens
@ 2001-09-12 3:18 ` Einar Karttunen
2001-09-12 7:14 ` Chris Houser
2001-09-12 7:38 ` Mikael Hallendal
1 sibling, 1 reply; 4+ messages in thread
From: Einar Karttunen @ 2001-09-12 3:18 UTC (permalink / raw
To: gentoo-dev
On Tue, Sep 11, 2001 at 10:00:11PM -0500, Ben Lutgens wrote:
> Hi all, by default in gentoo (as well as a few other distros as well) X is
> configured to listen on port 6000/tcp for remote X requests, this is a
> known security hazard.
>
> If you're using xdm do the following:
> edit /etc/X11/xdm/Xservers to say
>
> local /usr/X11R6/bin/X -nolisten tcp
>
> I also recommend not using xfs since X cant handle fonts without it.
>
Is there anyway to do this if one is not using xdm?
A solution working for xinit is good, but isn't there
any way of making this default short of compiling X
from scratch?
- Einar Karttunen
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [gentoo-dev] how to close port 6000 in gentoo
2001-09-12 3:18 ` Einar Karttunen
@ 2001-09-12 7:14 ` Chris Houser
0 siblings, 0 replies; 4+ messages in thread
From: Chris Houser @ 2001-09-12 7:14 UTC (permalink / raw
To: gentoo-dev
Einar Karttunen wrote: [Wed Sep 12 2001, 5:16:49AM EDT]
> On Tue, Sep 11, 2001 at 10:00:11PM -0500, Ben Lutgens wrote:
> > If you're using xdm do the following:
> > edit /etc/X11/xdm/Xservers to say
> >
> > local /usr/X11R6/bin/X -nolisten tcp
> Is there anyway to do this if one is not using xdm?
I added to the serverargs in my startx script, like this:
# chouser's paranoia
serverargs="$serverargs -nolisten tcp"
--Chouser
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [gentoo-dev] how to close port 6000 in gentoo
2001-09-11 21:02 [gentoo-dev] how to close port 6000 in gentoo Ben Lutgens
2001-09-12 3:18 ` Einar Karttunen
@ 2001-09-12 7:38 ` Mikael Hallendal
1 sibling, 0 replies; 4+ messages in thread
From: Mikael Hallendal @ 2001-09-12 7:38 UTC (permalink / raw
To: Gentoo Dev.
ons 2001-09-12 klockan 05.00 skrev Ben Lutgens:
> Hi all, by default in gentoo (as well as a few other distros as well) X is
> configured to listen on port 6000/tcp for remote X requests, this is a
> known security hazard.
>
> If you're using xdm do the following:
> edit /etc/X11/xdm/Xservers to say
>
> local /usr/X11R6/bin/X -nolisten tcp
Added this as default option in gdm (2.2.3.2-r1).
Regards,
Mikael Hallendal
--
Mikael Hallendal micke@codefactory.se
CodeFactory AB http://www.codefactory.se/
Office: +46 (0)8 587 583 05 Cell: +46 (0)709 718 918
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2001-09-12 13:37 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2001-09-11 21:02 [gentoo-dev] how to close port 6000 in gentoo Ben Lutgens
2001-09-12 3:18 ` Einar Karttunen
2001-09-12 7:14 ` Chris Houser
2001-09-12 7:38 ` Mikael Hallendal
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox