Securing Xvfb on a multi-user system

Alan Coopersmith alan.coopersmith at oracle.com
Tue Jan 27 11:34:36 PST 2015


On 01/27/15 08:16 AM, Roland Mainz wrote:
> See Xsecurity(7) manual page... the SUN-DES-1 MIT-KERBEROS-5 and
> ServerInterpreted auth (see $ xhost +si:localuser:root # example in
> the man page, likely your preference if you only need Xvfb locally)
> are user-to-user authentification mechanisms...

Though I don't believe there has been a buildable or working implementation
of MIT-KERBEROS-5 authentication for X since the mid-1990's.

-- 
	-Alan Coopersmith-              alan.coopersmith at oracle.com
	 Oracle Solaris Engineering - http://blogs.oracle.com/alanc


More information about the xorg mailing list