[Info-vax] OSes

[Johnny Billquist]

On 2016-01-19 22:21, Bill Cunningham wrote:
> "Johnny Billquist" <bqt at softjar.se> wrote in message
> news:n7jfk9$ubu$1 at Iltempo.Update.UU.SE...
>
>> X does not need forwarding in general. There are a couple of reasons why
>> people do it anyway.
>>
>> 1) Easy. Doing ssh -X does it all for you, so you do not have to do
>> anything more.
>> 2) Security. By tunneling, you do not need to have your X server enabled
>> for access by anything outside localhost.
>> 3) Firewalls. If you are behind a fire wall, or NATed, or whatelse, it
>> might be that the machine where you are running your X clients might not
>> actually be able to contact your X server.
>> 4) Security (again). ssh is encrypted. Since keystrokes travel across X,
>> you could sniff peoples keyboards. Tunneling over ssh prevents that from
>> being done (easily).
>
> This might go a little OT Johnny forgive me if it does. But I think this is
> relevent to the conversation.
>
> <OT>
> I installed all xorg-x11-server rpms I could fin with my fedora 20 distro. I
> was finally able to run "startx" and get a 0 returned. SO it must be fine. I
> also install the whol group "Basic DEsktop" I thought it couldn't hurt.
>
>      No how would I set my server(s) to localhost only. Nothing from remote
> or the net? And ssh -X needs something else obviously. HTH </OT>
>
>      I hope you know how to do this ;)

I would suspect that your Xservers by default do not accept connections 
from anything but localhost. And no, you do not need anything more done 
for ssh to tunnel. If I remember right, ssh simply notices that you have 
the DISPLAY variable set to something, so it will setup a tunnel and a 
fake X server on the remote machine, and just forward the traffic to 
your local X server as needed.

You don't have to go all basic and start X through startx. If you get it 
up and running as part of the normal desktop setup, that is just as good.

	Johnny