Bug 349071
| Summary: | Server-Interpreted xhost line added by xinit breaks some X11 clients | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Need Real Name <k.j.nash> |
| Component: | xorg-x11-xinit | Assignee: | Adam Jackson <ajax> |
| Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
| Severity: | medium | Docs Contact: | |
| Priority: | low | ||
| Version: | 8 | CC: | mcepl, xgl-maint |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2008-02-11 22:49:04 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Need Real Name
2007-10-23 17:03:52 UTC
Looks like duplicate of bug 199809, but that was supposed to be fixed in Rawhide sometimes in 2006. (In reply to comment #0) > The script > /etc/X11/xinit/xinitrc.d/localuser.sh > causes xhost to have a server-interpreted line "SI:localuser:your-username". > The presence of this line breaks some software, notably the "send" command of > Tk, which does a simple inspection of `xhost` for security reasons. > > The logged-in user on the localhost has xauth authentication, so does this xhost > line serve any useful purpose? Yes, it does. One, it allows you to connect to the server even if you've disabled the Xauthority file (which we plan to do either in F9 or F10), which is an improvement in security when, say, your ~ is on NFS. Two, it makes connectivity to the server resilient in the face of hostname changes, which are common when in a DHCP environment. So, send is broken. |