From owner-freebsd-questions  Fri Apr 27  8:24:14 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from ptavv.es.net (ptavv.es.net [198.128.4.29])
	by hub.freebsd.org (Postfix) with ESMTP id 8EE8C37B42C
	for <freebsd-questions@FreeBSD.ORG>; Fri, 27 Apr 2001 08:24:11 -0700 (PDT)
	(envelope-from oberman@ptavv.es.net)
Received: from ptavv.es.net (localhost [127.0.0.1])
	by ptavv.es.net (8.10.1/8.10.1) with ESMTP id f3RFO6c29944;
	Fri, 27 Apr 2001 08:24:06 -0700 (PDT)
Message-Id: <200104271524.f3RFO6c29944@ptavv.es.net>
To: Sean Broestl <broestls@holly.ColoState.EDU>
Cc: "Robert T.G. Tan" <rotan@cs.pdx.edu>,
	freebsd-questions@FreeBSD.ORG
Subject: Re: su in X 
In-reply-to: Your message of "Fri, 27 Apr 2001 08:24:37 MDT."
             <Pine.A41.4.10.10104270823320.170444-100000@holly.ColoState.EDU> 
Date: Fri, 27 Apr 2001 08:24:06 -0700
From: "Kevin Oberman" <oberman@es.net>
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

> Date: Fri, 27 Apr 2001 08:24:37 -0600 (MDT)
> From: Sean Broestl <broestls@holly.ColoState.EDU>
> Sender: owner-freebsd-questions@FreeBSD.ORG
> 
> switch back to your normal account, and type "xhost + localhost". That
> should be all you need.

Please, DON'T do this. xhosts is a mammoth security hole that should
never have escaped from the labs of the mad scientists in Cambridge,
Mass. It allows anyone who has access to a system to monitor every
keystroke you enter.

Use xwrappers (from the ports) or use xauthority. (It will usually
work to use 'setenv XAUTHORITY ~login-username/.Xauthority'.)

R. Kevin Oberman, Network Engineer
Energy Sciences Network (ESnet)
Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab)
E-mail: oberman@es.net			Phone: +1 510 486-8634

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message