Security: Absolute Client vetting or trust a remote root?

Mike Mestnik cheako+xorg-devel at mikemestnik.net
Thu Jun 7 18:43:35 PDT 2012


On 06/07/12 12:30, Alan Coopersmith wrote:
> On 06/ 7/12 05:12 AM, Mike Mestnik wrote:
>> The fix is to disable this code whenever a TCP client is connected.
> 
> People who care about security already fixed that by running with
> -nolisten tcp.
> 
That disables a major feature of the Network Transparent Windows System,
we call X.

It's not a solution, just like not connecting your computer to a network
is also not a solution.


More information about the xorg-devel mailing list