| version 1.202, 2005/03/01 14:47:58 |
version 1.203, 2005/03/02 02:21:07 |
|
|
| (for the user's X authorization database) |
(for the user's X authorization database) |
| can access the local X11 display through the forwarded connection. |
can access the local X11 display through the forwarded connection. |
| An attacker may then be able to perform activities such as keystroke monitoring. |
An attacker may then be able to perform activities such as keystroke monitoring. |
| |
.Pp |
| |
For this reason, X11 forwarding is subjected X11 SECURITY extension |
| |
restrictions by default. |
| |
Please refer to the |
| |
.Nm |
| |
.Fl Y |
| |
option and the |
| |
.Cm ForwardX11Trusted |
| |
directive in |
| |
.Xr ssh_config 5 |
| |
for more information. |
| .It Fl x |
.It Fl x |
| Disables X11 forwarding. |
Disables X11 forwarding. |
| .It Fl Y |
.It Fl Y |
| Enables trusted X11 forwarding. |
Enables trusted X11 forwarding. |
| |
Trusted X11 forwardings are not subjected to the X11 SECURITY extension |
| |
controls. |
| .El |
.El |
| .Sh CONFIGURATION FILES |
.Sh CONFIGURATION FILES |
| .Nm |
.Nm |
![[BACK]](/icons/back.gif){kind=icon}
Return to ssh.1 CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / usr.bin / ssh