Hi Nick,
On Do 05 Dez 2013 16:46:02 CET, Nick Ingegneri wrote:
> Thanks for
suggesting the "ssh -Y". That works (as done "ssh -X")
> but unfortunately it doesn't solve my problem. We are trying to drop
> X2Go into an existing environment as a replacement for a current
> solution, and can't force a change in how users connect to the
> remote machines. For X2Go we really need to figure out how to get
> this working with a simple "xhost +" and "setenv DISPLAY
> host:display".
Running xhost + on a multi-user host is not a good idea, at all. If
that is your setup of convenience, change it, as it 100% lacks
security. People can access each others' clipboards and read+write
content to/from it. Easily, one can sniff passwords etc. that get
copied to the
clipboard, etc.
> Interestingly, it looks like freenx/opennx work fine in this mode,
> but we would prefer not to use that solution as it appears to be a
> dead end. There must be something different about how freenx/opennx
> set up security vs X2Go, but I can't find much documentation on
> configuring security in X2Go.
You probably have to play with the xauth command for making your
desired setup work. (Though xhost + makes xauth unnecessary, so maybe
not).
> I'll spend some more time in the man pages, but any other
> suggestions here would be greatly appreciated.
Greets,
Mike
--
DAS-NETZWERKTEAM
mike gabriel, herweg 7, 24357 fleckeby
fon: +49 (1520) 1976 148
GnuPG Key ID 0x25771B31
mail:
mike.gabriel@das-netzwerkteam.de,
http://das-netzwerkteam.defreeBusy:
https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xfb