Re: x11 apps traffic not encrypted

From: Darren Dunham (ddunham@redwood.taos.com)
Date: 02/26/03 

From: Darren Dunham <ddunham@redwood.taos.com>
Date: Wed, 26 Feb 2003 22:19:29 GMT

Igor B <igor_bumshteyn@yahoo.com> wrote:
> hi
> i'm using x secure pro product to connect to sco 5.0.5 ssh3.1.0 server
> and remotely start x11 apps such as xclock. in my config file i have
> ForwardX11 yes. i ran sniffer and ssh login process is encrypted and
> it's on port 22 but right after authentication completed i see traffic
> start on port 6000 and i'm under impression that it's not encrypted.
> in the data portion of a packet i can see some vars being set such as
> SCO_PALETTE, WM_CONFIGURE_DENIED, WM_MOVED, WM_DELETE_WINDOW,
> WM_PROTOCOLS and the command line to start xclock as well as the time
> can also bee seen in plaintext. is that what i'm supposed to see?

If it's on port 6000, then no it's not encrypted (or otherwise being
handled by ssh).

It sounds like you're setting your DISPLAY by hand or in a startup
script. Instead, if X11 forwarding is working via ssh, it should set
your DISPLAY for you (and will ususally be the name of the machine
you've connected to with a high port). So instead of localdisplay:0, it
would probably be remotemachine:10 or something like that.

If you change the DISPLAY, you stop using the tunnel and go back to
standard X protocol traffic. 

-- 
Darren Dunham                                           ddunham@taos.com
Unix System Administrator                    Taos - The SysAdmin Company
Got some Dr Pepper?                           San Francisco, CA bay area
         < This line left intentionally blank to confuse you. >

Relevant Pages

  • x11 apps traffic not encrypted
    ... and remotely start x11 apps such as xclock. ... in my config file i have ... start on port 6000 and i'm under impression that it's not encrypted. ... WM_PROTOCOLS and the command line to start xclock as well as the time ...
    (comp.security.ssh)
  • FS: Decent spec HP nc6000 Centrino laptop
    ... Docking station with firewire port(I haven't tested if the laptop supports Firewire through the port replicator) ... Processor Intel Pentium M 1.7 GHz ... Display 14.1 in. ... Expandability 2 x Type I/II PC Card Slot, 1 x SD Card Slot, Docking Station/Port Replicator ...
    (uk.adverts.computer)
  • Re: Feasibility question: Simulating (basic) hardware ?
    ... I am thinking about simulation at a somewhat higher level and when I ... connections - the visual representation of these connections being far ... Now, if this port is connected to a seven segment display, it will be ...
    (comp.lang.tcl)
  • Re: now wtf is this good for (Was: Re: ISP blocking smtp port and a way how to solve the issue)
    ... > crap as it does fsck up the display of messages. ... > way to include a signature without fscking up the display unless you ... The port seems unusable at the moment. ...
    (comp.unix.bsd.freebsd.misc)
  • Re: X11s tcp port: FIXED
    ... off a app on a 2nd machine of mine, and have it display on my main FreeBSD ... but netstat shows me no such port. ...
    (freebsd-questions)