From owner-freebsd-questions  Tue Mar 20  9: 2: 3 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from cgmd76206.chello.nl (d9168.upc-d.chello.nl [213.46.9.168])
	by hub.freebsd.org (Postfix) with ESMTP id 6D70737B71A
	for <questions@FreeBSD.ORG>; Tue, 20 Mar 2001 09:01:59 -0800 (PST)
	(envelope-from edwin@cgmd76206.chello.nl)
Received: by cgmd76206.chello.nl (Postfix, from userid 1001)
	id EAD53412; Tue, 20 Mar 2001 18:01:57 +0100 (CET)
Date: Tue, 20 Mar 2001 18:01:57 +0100
From: Edwin Groothuis <edwin@mavetju.org>
To: Alexey Koptsevich <kopts@astro.ioffe.rssi.ru>
Cc: questions@FreeBSD.ORG
Subject: Re: xhost
Message-ID: <20010320180157.O25892@cgmd76206.chello.nl>
References: <3AB787B5.42B4A33D@i-clue.de> <Pine.BSF.4.21.0103201939340.53894-100000@astro.ioffe.rssi.ru>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <Pine.BSF.4.21.0103201939340.53894-100000@astro.ioffe.rssi.ru>; from kopts@astro.ioffe.rssi.ru on Tue, Mar 20, 2001 at 07:41:28PM +0300
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Tue, Mar 20, 2001 at 07:41:28PM +0300, Alexey Koptsevich wrote:
> 
> > > Is it possible to disable xhost-based authorization completely?
> > 
> > Add xhost + to your login script. This is a big, fat security risk.
> 
> Thanks, but I wrote "disable completely"... I want to forbid xhost usage 
> for all users on the given host.

chmod -x `which xhost` is a start, furthermore have a look at
Xsecurity(1) and xauth(1).

Edwin

-- 
Edwin Groothuis   |              Personal website: http://www.MavEtJu.org
edwin@mavetju.org |           Interested in MUDs? Visit Fatal Dimensions:
------------------+                     http://FatalDimensions.nl.eu.org/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message