Re: openssh & X11

From: Darren Tucker (dtucker_at_dodgy.net.au)
Date: 02/07/04

Next message: Darren Tucker: "Re: VNC over SSH and SOCKS"

Previous message: Darren Tucker: "Re: license_ssh2.dat for Secure Shell V3.2 for Unix(Solaris 8)"
In reply to: Gary Armstrong: "openssh & X11"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 6 Feb 2004 23:21:30 +0000 (UTC)

In article <1076093480.278665@news-1.nethere.net>,
Gary Armstrong <garyarm_remThis_at_testedgeinc.com> wrote:
>Yup yet another newbie, so if I missed this or misunderstood what I
>read, please accept my appologies.
>
>I have gotten openssh to work through a natting router to a system on my
>lan. The correct port is forwarded from the router to a linux box
>running sshd. The X11 forwarding appears to work from the ssh server to
>the client. From this setup I'm able to rlogin and get shell access to
>another system of interest on my lan.
>
>
>What I'd like to know, is it possible to run an Xapp there and display
>it on the client outside the router? When I run a Xapp on the ssh
>server, DISPLAY is set to localhost:10.0. I tried setting DISPLAY on the
>app server to sshserver:10.0, but no joy.
>
>
>Is this doable and what does it take?

Yes, but it will take some setting up. First, set "X11UseLocalhost no"
in the SSH server's sshd_config and restart sshd.

Next, log back in via SSH and do "echo $DISPLAY", you should find that
it's something like "hostname:10".

Now you need to find the matching xauth key for that display. You should
be able to do something like "xauth nextract - $DISPLAY" (this may depend
on your X libraries), and merge this into your SunOS box's xauth file.

You can probably string this together with something like this on your
SSH server (untested):

$ xauth nextract - $DISPLAY | \
rsh sunosbox "xauth nmerge -; DISPLAY=$DISPLAY xterm"

>Note: the app server is an oooolllllddd sunOS 4.1.4 machine and it's a
>pain to get anything new to work there.

OpenSSH -current is known to build on SunOS 4.1.2 (at least, it did a
couple of months back) and there's a patch for 3.7.1p2 here:
http://bugzilla.mindrot.org/show_bug.cgi?id=670

-- 
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4  37C9 C982 80C7 8FF4 FA69
    Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.

Next message: Darren Tucker: "Re: VNC over SSH and SOCKS"

Previous message: Darren Tucker: "Re: license_ssh2.dat for Secure Shell V3.2 for Unix(Solaris 8)"
In reply to: Gary Armstrong: "openssh & X11"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Safest way of accessing a home computer from outside?
... what if I my router doesent have a public IP ... I agree - ssh with no password and then use certificates to ... use for ssh is forwarded to your ssh server. ... You can find Hamachi at ...
(Fedora)
Re: Safest way of accessing a home computer from outside?
... what if I my router doesent have a public IP ... use for ssh is forwarded to your ssh server. ... You can find Hamachi at ...
(Fedora)
Re: Safest way of accessing a home computer from outside?
... what if I my router doesent have a public IP ... I agree - ssh with no password and then use certificates to ... use for ssh is forwarded to your ssh server. ... You can find Hamachi at ...
(Fedora)
Re: newbie question on port forwarding(and ssh, netcat)
... Recently I am trying to connect my home laptop(I have a router in my ... I read several articles on port forwarding. ... ssh USER@DEBIAN ... as the ssh server treats different interfaces separately. ...
(Debian-User)
Re: ssh -X (X11 forwarding) not working from 6.1 to 8.1
... DISPLAY is not getting set in a remote shell started by "ssh -X". ... The ssh client is FreeBSD 6.1 and the ssh server is FreeBSD 8.1. ...
(freebsd-questions)