Re: Bug#765632: ForwardX11Trusted set to yes over a decade ago, for release reasons?
On Wed, Aug 19, 2015 at 11:51:36PM +0200, Christoph Anton Mitterer wrote:
> On Wed, 2015-08-19 at 20:59 +0100, Colin Watson wrote:
> > Run xterm and try to select something, bam, your xterm crashes with
> > BadAccess.
>
> Which means that people would typically note quite quickly that they
> need to open up things more (if they want to continue).
>
> In my opinion this is much less worse, than having the current default,
> where people who may be at risk wouldn't notice anything.
So the result is that each user of X11 forwarding swears at their
computer for a while until they work out what the problem is, and then
configure "ForwardX11Trusted no" so that it goes away. I hardly see
this as a net improvement in the state of the world.
I would welcome comments from people other than Christoph, whose views I
am already quite familiar with. (And thanks, Josselin.)
--
Colin Watson [cjwatson@debian.org]
Reply to: