From owner-freebsd-questions@freebsd.org Wed Oct 9 14:14:47 2019 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 389CA14D1A0 for ; Wed, 9 Oct 2019 14:14:47 +0000 (UTC) (envelope-from ralf.mardorf@rocketmail.com) Received: from sonic310-11.consmr.mail.ir2.yahoo.com (sonic310-11.consmr.mail.ir2.yahoo.com [77.238.177.32]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 46pGSP4M57z4Tmv for ; Wed, 9 Oct 2019 14:14:45 +0000 (UTC) (envelope-from ralf.mardorf@rocketmail.com) X-YMail-OSG: mLRa4KIVM1nzxB2Ygv84unwz2VO5AzsN8s6zecfVQBWgzYcnPf70J_UmUNjggg9 7hvpG1Ce7V6sfMtwm.rUNwE_iwWR49rYtETpI8OIExjEMAAJNcK9OiYFYWtl4gguyB1GwLLQTrqX U30WRWHXrVf7W1r0NTN_PXliIs96VqTpUuKdSqdtmLH.yPZ4CrPQcu91Tkqn7rDnfuvpPF7ZNz0h 5OACo8I.Q6TnY96QH4nlIe.G4RwdpImyCONR4RzCVmOpJSb.OYgcu70prLmk9_2AxGqcHhGrhJkT dCcEgUPQzLVJ2RpfWwnON.xPWpd46Kl2gckZAAfBTC5izpuQo6SymVbEevgy2c2v08rIABKSO6_j K4g.b6hmxX8xmCHtpgNn18lyHcgUSYuBE8b1K67hLPPpcX0SPuM5L_fsPftc852aTLhIT8bahex2 2neCaEIsLXqz_dxlxgbU0oBXaooDmwx0ZDgLA2tPDAQmJqedJQ2U7ClJ5Ou3qpko071QPoLcZS4p mlseBB8x9f4DPg89CQWpUWOuRfxiQu13bQlcUsUidHWke8G1LA9Wqsqfjkl1ImvWjDnxvnXKnO.O WNAEA2IyT90bHPaKqRKF1l_A3phG90mKEC0bXArnJXJNkUJqk26wtcykJfCH4hoMkIv6hfmAg1cR lUg9TBYfPuy1i20kWL4xHIugqBa2JG71GoPbGbBqMSXO9VpaF8xWTAmPPQ.uuq4x2Ty3XTKJAeSe TbXr3MyxZ2xaiMpgpFWbITKwRqonl9ave1UmYF1.pvlmURc3jNhL9mZFkP3L8VYHy7AbTTkxL_K8 KNfcHyHPCEH3WGGPqEMjk0DXW8D9qY8YKBiwoVEX3CwrYzIeLHf3n3fAMfSt_M3Xl1XQ.5LyezcN HF5.0vI6zftwqrFQAvdZoXnypbdvaYwQx.eBHKJwKob5KlKUFUIGUms87sCtB6bSbU_8.5QGNkGQ JFsUy64UExRnQl.43S2oA7F5uS_FZImmXoctMdap8oXdpcqJbsvEutbql9q1QTAHlQxiwNsNZHt6 RpDI3T2HC.RyBH4_zzYrehrSvms69JfKr0wuxMrCFA5rS8pH912EkgMv6iGKHkTZ9dAJzxoL6MiL BPvVRMiGxgr3mCc.2PUcK51g4cMGrKrq..5OJAuucK.ghVRfAfwPtAX1KhCJmS4mD94LKTQ2HhVb tASdToeNmwnb57qkw3enBv4iuOGzHD8yHUgM8FCxAgTJHRtFQl1yC7Cn1UzZfgheBLIT9opNrRcA xjQ9P5Q_pisn0HugrRu8rylOupECuz92Ft1gKeLzlVPC7Ix16dsSUJWSPlTpcAYbeVyyOYYasAw- - Received: from sonic.gate.mail.ne1.yahoo.com by sonic310.consmr.mail.ir2.yahoo.com with HTTP; Wed, 9 Oct 2019 14:14:43 +0000 Received: by smtp402.mail.ir2.yahoo.com (Oath Hermes SMTP Server) with ESMTPA ID e71d21928c79804c857fd6114b9c8c9d; Wed, 09 Oct 2019 14:14:41 +0000 (UTC) Date: Wed, 9 Oct 2019 16:14:41 +0200 From: Ralf Mardorf To: freebsd-questions@freebsd.org Subject: Re: accessing the host's X server from inside chroot Message-ID: <20191009161441.15a76589@archlinux> In-Reply-To: <0f7f3a8c-9b5d-c9cf-2bed-9f534216a441@hedeland.org> References: <0f7f3a8c-9b5d-c9cf-2bed-9f534216a441@hedeland.org> X-Mailer: Claws Mail (linux) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 46pGSP4M57z4Tmv X-Spamd-Bar: / X-Spamd-Result: default: False [-0.82 / 15.00]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[rocketmail.com:s=s2048]; XM_UA_NO_VERSION(0.01)[]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ptr:yahoo.com]; FREEMAIL_FROM(0.00)[rocketmail.com]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; NEURAL_HAM_LONG(-0.51)[-0.512,0]; NEURAL_SPAM_MEDIUM(0.18)[0.179,0]; RCPT_COUNT_ONE(0.00)[1]; IP_SCORE_FREEMAIL(0.00)[]; RCVD_TLS_LAST(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DKIM_TRACE(0.00)[rocketmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[rocketmail.com,reject]; RCVD_IN_DNSWL_NONE(0.00)[32.177.238.77.list.dnswl.org : 127.0.5.0]; IP_SCORE(0.00)[ip: (3.85), ipnet: 77.238.176.0/22(2.17), asn: 34010(1.71), country: GB(-0.08)]; RWL_MAILSPIKE_POSSIBLE(0.00)[32.177.238.77.rep.mailspike.net : 127.0.0.17]; FROM_EQ_ENVFROM(0.00)[]; MID_RHS_NOT_FQDN(0.50)[]; ASN(0.00)[asn:34010, ipnet:77.238.176.0/22, country:GB]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[rocketmail.com]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Oct 2019 14:14:47 -0000 On Wed, 9 Oct 2019 15:18:32 +0200, Per Hedeland wrote: >xhost + Hi, for years I'm running my 24/7 Linux desktop PC session with Internet connection almost all of the times with 'xhost +'. It's certainly not smart to do it, but depending on the kind of unneeded security, it at least is an option, again, assuming security is more or less unimportant. Btw. I never noticed an attack against a FreeBSD or Linux desktop PC session I was running. OTOH perhaps nobody tried to attack me, because the majority of FreeBSD and Linux users refrain from the 'xhost +' insanity, or I simply didn't notice the attacks. IOW it shouldn't become wide-spread to do it, but on rare occasions it might be ok. It at least is an available option, that for some reason never was discontinued ;). Don't get me wrong, I don't encourage to do it, it's just an available option, that might be not that catastrophic, if the network is secured by one or the other security related action. Regards, Ralf