version 1.202, 2005/03/01 14:47:58 |
version 1.203, 2005/03/02 02:21:07 |
|
|
(for the user's X authorization database) |
(for the user's X authorization database) |
can access the local X11 display through the forwarded connection. |
can access the local X11 display through the forwarded connection. |
An attacker may then be able to perform activities such as keystroke monitoring. |
An attacker may then be able to perform activities such as keystroke monitoring. |
|
.Pp |
|
For this reason, X11 forwarding is subjected X11 SECURITY extension |
|
restrictions by default. |
|
Please refer to the |
|
.Nm |
|
.Fl Y |
|
option and the |
|
.Cm ForwardX11Trusted |
|
directive in |
|
.Xr ssh_config 5 |
|
for more information. |
.It Fl x |
.It Fl x |
Disables X11 forwarding. |
Disables X11 forwarding. |
.It Fl Y |
.It Fl Y |
Enables trusted X11 forwarding. |
Enables trusted X11 forwarding. |
|
Trusted X11 forwardings are not subjected to the X11 SECURITY extension |
|
controls. |
.El |
.El |
.Sh CONFIGURATION FILES |
.Sh CONFIGURATION FILES |
.Nm |
.Nm |