 |
Home
| Calendar
| Mail Lists
| List Archives
| Desktop SIG
| Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU |
|
Home
| Calendar
| Mail Lists
| List Archives
| Desktop SIG
| Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU |
dberry wrote in a message to Mike Bilow:
d> Does any know of a way to run x traffic over the ssh port.
d> We currently use ssh to connect to our internal network but
d> we also have people who want to user x-windows over the Net.
d> Most of the off site people with Windoze use tterm but
d> there is no way to forward x traffic. Any ideas?
X forwarding is built into ssh:
If the user is using X11 (the DISPLAY environment variable
is set), the connection to the X11 display is automati-
cally forwarded to the remote side in such a way that any
X11 programs started from the shell (or command) will go
through the encrypted channel, and the connection to the
real X server will be made from the local machine. The
user should not manually set DISPLAY. Forwarding of X11
connections can be configured on the command line or in
configuration files.
The DISPLAY value set by ssh will point to the server
machine, but with a display number greater than zero.
This is normal, and happens because ssh creates a "proxy"
X server on the server machine for forwarding the connec-
tions over the encrypted channel.
Ssh will also automatically set up Xauthority data on the
server machine. For this purpose, it will generate a ran-
dom authorization cookie, store it in Xauthority on the
server, and verify that any forwarded connections carry
this cookie and replace it by the real cookie when the
connection is opened. The real authentication cookie is
never sent to the server machine (and no cookies are sent
in the plain).
If the user is using an authentication agent, the connec-
tion to the agent is automatically forwarded to the remote
side unless disabled on command line or in a configuration
file.
See the docs for more info.
-- Mike
-
Subcription/unsubscription/info requests: send e-mail with
"subscribe", "unsubscribe", or "info" on the first line of the
message body to discuss-request at blu.org (Subject line is ignored).
 |
|
| BLU is a member of BostonUserGroups | |
| We also thank MIT for the use of their facilities. | |
