From owner-freebsd-hackers Fri Apr 14 16:43: 6 2000 Delivered-To: freebsd-hackers@freebsd.org Received: from baynet.baynetworks.com (ns1.BayNetworks.COM [134.177.3.20]) by hub.freebsd.org (Postfix) with ESMTP id E9CA237B814 for ; Fri, 14 Apr 2000 16:43:03 -0700 (PDT) (envelope-from bwithrow@engeast.BayNetworks.COM) Received: from mailhost.BayNetworks.COM (h8754.s84f5.BayNetworks.COM [132.245.135.84]) by baynet.baynetworks.com (8.9.1/8.9.1) with ESMTP id QAA14590; Fri, 14 Apr 2000 16:41:35 -0700 (PDT) Received: from pobox.engeast.BayNetworks.COM (pobox.engeast.baynetworks.com [192.32.61.6]) by mailhost.BayNetworks.COM (8.9.1/8.8.8) with ESMTP id TAA25643; Fri, 14 Apr 2000 19:47:46 -0400 (EDT) Received: from kyzyl.engeast.baynetworks.com (kyzyl [192.32.150.103]) by pobox.engeast.BayNetworks.COM (SMI-8.6/BNET-97/04/24-S) with ESMTP id TAA11815; Fri, 14 Apr 2000 19:43:00 -0400 for Message-Id: <200004142343.TAA11815@pobox.engeast.BayNetworks.COM> X-Mailer: exmh version 2.1.1 10/15/1999 To: hackers@freebsd.org Cc: Robert Withrow , Ted Faber , witr@rwwa.com Subject: Re: Authorization broken in 4.0 REL/XDM? In-Reply-To: Message from Robert Withrow of "Thu, 13 Apr 2000 16:46:48 EDT." <200004132046.QAA36277@tuva.engeast.baynetworks.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Fri, 14 Apr 2000 19:40:36 -0400 From: Robert Withrow Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Ted is still the man, but the patch I sent earlier had a typo that prevents correct authorization processing... To recap, in 4.0 REL, xdm is built with the ability to do XDM-AUTHORIZATION-1, but, apparently, the servers are not. This prevents all clients from connecting to the server. The following patch disables XDM-AUTHORIZATION-1 and just has the server use MIT-MAGIC-COOKIE-1. It would be nice if this was listed in the errata. Of course, even better would be to have the servers re-built so they support XDM-AUTHORIZATION-1 (assuming that is truly what the problem is) and have *them* listed in the errata also. Here is the corrected patch (note the "-" instead of the "_"): *** xdm-config.orig Thu Apr 13 16:37:35 2000 --- xdm-config Fri Apr 14 19:31:07 2000 *************** *** 10,16 **** --- 10,18 ---- ! X terminals will be configured that way, so by default ! use authorization only for local displays :0, :1, etc. DisplayManager._0.authorize: true + DisplayManager._0.authName: MIT-MAGIC-COOKIE-1 DisplayManager._1.authorize: true + DisplayManager._1.authName: MIT-MAGIC-COOKIE-1 ! The following three resources set up display :0 as the console. DisplayManager._0.setup: /usr/X11R6/lib/X11/xdm/Xsetup_0 DisplayManager._0.startup: /usr/X11R6/lib/X11/xdm/GiveConsole Thanks! -- Robert Withrow -- (+1 978 288 8256) BWithrow@BayNetworks.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message