Re: Passing X credentials across su with localhost:displayno
- From: Dan Stromberg <strombrg@xxxxxxxxxxxxxxx>
- Date: Thu, 25 May 2006 20:44:12 GMT
On Wed, 24 May 2006 20:21:10 +0000, Dan Stromberg wrote:
Hi folks.
I've been using $(hostname):displayno for a while now, and it works
well, even across su, due to a python wrapper script I wrote that will
save the relevant X credential in a user-readable-only file and give
that file to the target user (with a setuid C wrapper for the script
itself to allow giving away files and a bash wrapper for the C wrapper
for convenience features :)
However, I'd like to do the same with localhost:displayno (with
"X11UseLocalhost yes"), but the same technique does not appear work in
this case. Why is that? Is there some sort of extra layer of
verification going on with localhost:displayno relative to
$(hostname):displayno that prevents other users from authenticating,
even if they have the credentials (IE, the xauth cookie and same
$DISPLAY).
Thanks!
I probably should be more specific.
It's been a while since I looked at this, but I believe localhost:123 (for
example) didn't show up in xauth's list of displays, so there was nothing
to pass...
.
- References:
- Passing X credentials across su with localhost:displayno
- From: Dan Stromberg
- Passing X credentials across su with localhost:displayno
- Prev by Date: Re: Question regarding using RSH protocol (not binary) over SSH
- Next by Date: Re: Question regarding using RSH protocol (not binary) over SSH
- Previous by thread: Passing X credentials across su with localhost:displayno
- Next by thread: I need to know why port forwarding is rejected
- Index(es):
Relevant Pages
|
|
