Date: Tue, 28 Oct 2003 17:44:02 +0100 From: Wolfgang Kess <bsdlist@kess.ch> To: Jason Stone <freebsd-security@dfmm.org> Cc: "freebsd-security@freebsd.org" <freebsd-security@freebsd.org> Subject: Re: How to disable XFree86 and wdm listening ports Message-ID: <20031028164402.GA9780@stinky.trash.net> In-Reply-To: <20031027175709.C38023@walter> References: <20031027211512.GA14467@stinky.trash.net> <Pine.LNX.4.58.0310272032170.533@ragrecevfr.fsrat.fbheprsver.pbz> <20031027175709.C38023@walter>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Oct 27, 2003 at 06:00:42PM -0800, Jason Stone wrote: > > If you think that you might someday invoke X with a different display > manager, you might consider replacing /usr/X11R6/bin/X with a shell script > that calls "X.real -nolisten tcp" - this would make all methods of > starting X not use the tcp port. On the other hand, you'll have to > remember to maintain it when you upgrade. A very nice recommendation. X is linked to Xwrapper-4 lrwxr-xr-x 1 root wheel - 10 Oct 22 18:18 X@ -> Xwrapper-4 Please publish your shell script. > Also, it's probably a good idea to firewall of that port as well - defense > in depth and all that. Yes, I'll do so. Thank's Wolfgang
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031028164402.GA9780>