Description of Problem:
RH 7.2 with all errata applied. X is listening on port 6000 by default. I
cannot stop X listening. I have edited both /etc/X11/xdm/Xservers and
/etc/X11/gdm/gdm.conf (GDM is running) and added the -nolisten tcp option
to the command line for X, but it does not stop X listening on 6000.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. edit /etc/X11/xdm/Xservers and /etc/X11/gdm/gdm.conf
2. Add -nolisten tcp to the :0 and 0= lines respectively
3. reboot and use netstat -ant to check for port 6000
4. I have also tried --nolisten tcp without effect
X is still listening on port 6000
X should not be listening on port 6000
I notice with ps ax that the command line that starts X is
actually /etc/X11/X :0 -auth /var/gdm/:0.Xauth
while gdm.conf shows 0=/usr/bin/X11/X -nolisten tcp
and Xservers shows :0 local /usr/X11R6/bin/X -nolisten tcp
so - where is X actually being started?
If I edit gdm.conf to have "-nolisten tcp" then I can see the "-nolisten tcp" in
the ps output, and I do not see a port 6000 in netstat. I'm using a beta version
of the next release but the gdm package is essentially unchanged from 7.2.
In any case changing severity->normal, because it isn't an exploitable security
hole, just a possible complication in locking down a configuration more than the
A workaround is to firewall port 6000, of course.
Is your install modified in some way? Maybe the gdm.conf file is not being
parsed successfully? Can you try making the change via "gdmconfig" and see if it
(Note you don't have to reboot to try changes, just "telinit 3" to shut down X
then "telinit 5" to go back to X.)
I'm closing this bug because it's rather old and is probably not an
issue anymore. If you can still reproduce this problem, feel free to