From owner-freebsd-questions Mon Nov 12 10:39:58 2001 Delivered-To: freebsd-questions@freebsd.org Received: from chmls05.mediaone.net (chmls05.mediaone.net [24.147.1.143]) by hub.freebsd.org (Postfix) with ESMTP id 6118C37B417 for ; Mon, 12 Nov 2001 10:39:54 -0800 (PST) Received: from keyslapper.org (acadia.ne.mediaone.net [65.96.186.69]) by chmls05.mediaone.net (8.11.1/8.11.1) with ESMTP id fACIdlk19433 for ; Mon, 12 Nov 2001 13:39:48 -0500 (EST) Received: (from leblanc@localhost) by keyslapper.org (8.11.6/8.11.6) id fACIerh53358 for freebsd-questions@FreeBSD.org; Mon, 12 Nov 2001 13:40:53 -0500 (EST) (envelope-from leblanc) Date: Mon, 12 Nov 2001 13:40:52 -0500 From: Louis LeBlanc To: freebsd-questions@FreeBSD.org Subject: sshd and X11 forwarding? Message-ID: <20011112184052.GD53398@keyslapper.org> Reply-To: freebsd-questions@FreeBSD.org Mail-Followup-To: freebsd-questions@FreeBSD.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="NklN7DEeGtkPCoo3" Content-Disposition: inline User-Agent: Mutt/1.3.23.1i X-PGP-Fingerprint: 4EA2 24FF 41B0 0258 9A54 9309 7803 D662 B364 4562 X-bright-idea: Lets abolish HTML mail! Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --NklN7DEeGtkPCoo3 Content-Type: text/plain; charset=unknown-8bit Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hope this isn't too far OT, but I am trying to get X11 forwarding to work between 2 FreeBSD machines, both running 4.4 RELEASE. Both have the following in /etc/ssh/sshd_config: StrictModes yes X11Forwarding yes X11DisplayOffset 10 PrintMotd yes KeepAlive yes My understanding of this is that when you execute a prog that requires an X display, it will forward the windows, transients, etc to the client box. And the DISPLAY should set to something like :10.0. However, the DISPLAY never gets set, so no forwarding. Naturally, sshd is not stupid enough to just let me set my own, since that would be very unlikely to be a valid display, and also quite a security hole. This isn't a firewall issue, since only the client is running a firewall, which is wide open to the server IP. The server is behind an ACL based gateway, which allows all traffic to and from the client. The DISPLAY in any ssh connection is just not being set. Any ideas what I could be missing? TIA & HAND Lou --=20 Louis LeBlanc leblanc@keyslapper.org Fully Funded Hobbyist, KeySlapper Extrordinaire :) http://www.keyslapper.org =D4=BF=D4=AC Research is to see what everybody else has seen, and think what nobody else has thought. --NklN7DEeGtkPCoo3 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE78Be0eAPWYrNkRWIRAkN7AJwOrP+Tg65se/utHo8xn2AWovCTlQCdGj4+ GWIhd9+KT0pjuka7Dm5WuKw= =E9pG -----END PGP SIGNATURE----- --NklN7DEeGtkPCoo3-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message