Bug#803318: openssh-client: trusted X11 always on by default with -X, ssh_config -Y default misleading
Control: merge 765632 803318
On Wed, Oct 28, 2015 at 10:51:24AM -0700, Mark Hedges wrote:
> The default should be "ForwardX11Trusted no" else the -Y option is essentially
> meaningless. This is very misleading because users will think that because
> the -Y option is a positive affirmation, that it is normally not set by default
> when using the -X option.
I disagree strenuously with this, having investigated the consequences a
few months ago. My reasons may be found here:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=765632#41
There is no point turning on an option which results in such badly
broken X clients in practice that most people who use it will end up
turning it off in frustration.
--
Colin Watson [cjwatson@debian.org]
Reply to: