l i n u x - u s e r s - g r o u p - o f - d a v i s
L U G O D
 
Next Meeting:
June 17: Exploring the Terminal 		Next Installfest:
Saturday, January 26th 		Latest News:
Mar. 22: Slides from "Making Predictions Using Linux and R" talk 		Page last updated:
2005 Mar 18 01:03

The following is an archive of a post made to our 'vox-tech mailing list' by one of its subscribers.

 Report this post as spam:

(Enter your email address)
Re: [vox-tech] Exporting displays
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [vox-tech] Exporting displays

on Thu, Mar 17, 2005 at 02:26:32PM -0800, Mark K. Kim (lugod@cbreak.org) wrote:
> On Thu, 17 Mar 2005, Karsten M. Self wrote:
> 
> > on Wed, Mar 16, 2005 at 10:42:41PM -0800, Mark K. Kim [censored] wrote:
> [snip]
> > >    $xhost +
> >
> > BAD MARK.  NO DONUT.  OR COOKIE.
> 
> Lols.  In theory, you're right that it's a bad advice.  In practice, it's
> not a problem, especially for:
> 
>    1. Brief connections.
>    2. Local/trusted connections.
>    3. Connection check before securing it.
> 
> One should always be aware of security issues, of course, which I briefly
> touched upon and suggested using ssh instead for that reason.  The MIT
> magic cookie thing would be the next best thing but it's so convoluted
> that nobody uses it.
> 
> BTW, John, you can add a hostname after the '+' sign to allow connections
> only from that computer.  Example:
> 
>    $xhost +remote_host_ip_or_name
> 
> which would be the next next best thing to ssh -X and MIT magic cookie
> thingy.
> 
> My autoshop teacher once told me that a good mechanic always uses the
> correct wrench for the correct nut, so a good mechanic should never use
> the monkey wrench (a.k.a. adjustable wrench.)  But a good mechanic, he
> added, would never be without a monkey wrench in his toolbox.  `xhost +`
> is one of those monkey wrenches for UNIX people, and it would always be
> a tool I'd teach people along with `ssh -X`.

xhost is rather more like the guy who uses chisels as screwdrivers or
for opening paint cans.  Actually, using a chisel for live-circuit tests
on 220VAC is probably about the right spirit.

See my earlier response quoting Joe St. Sauver.  The Intranet is dead
but for the very smallest values of same.


Peace.

-- 
Karsten M. Self <kmself@ix.netcom.com>        http://kmself.home.netcom.com/
 What Part of "Gestalt" don't you understand?
   Moderator, Free Software Law Discussion mailing list:
     http://lists.alt.org/mailman/listinfo/fsl-discuss/

Attachment: signature.asc
Description: Digital signature

_______________________________________________
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech
LinkedIn
LUGOD Group on LinkedIn 		Sign up for LUGOD event announcements
Your email address: 		facebook
LUGOD Group on Facebook

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
PO Box 2082, Davis, CA 95617
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.

 Sponsored in part by:
O'Reilly and Associates
For numerous book donations.