Re: being hacked via ssh with X11 forwarding?
ssh automatically tries to connect to a remote X server when a conneciton
is established, to disable this behavior(for good) recompile ssh with the
configure flag --without-x to make sure nobody can connect to your X
server or use your ssh client to connect to a remote X server.
dont think anyone can 'hack' your X unless they already had an account on
your machine.
nate
On Thu, 6 Jan 2000 debuser@platinum.globalmart.com wrote:
debuse >>From my Linux box at work, I was using ssh to connect to my personal ISP.
debuse >I had X11 forwarding turned on. When I went to log out I got this
debuse >message:
debuse >
debuse >Waiting for forwarded connections to terminate...
debuse >The following connections are open:
debuse > X11 connection from shell.schwa.net port 1087
debuse >
debuse >Is someone from that machine hacking me? If so, how would he do this? If
debuse >not, what does it mean? I see there is a user logged onto my ISP from
debuse >that machine. What logs should I be looking at for information?
debuse >
debuse >Thanks,
debuse >
debuse >Gerry
debuse >
debuse >
debuse >--
debuse >Unsubscribe? mail -s unsubscribe debian-user-request@lists.debian.org < /dev/null
debuse >
----------------------------------------[mailto:aphro@aphroland.org ]--
Vice President Network Operations http://www.firetrail.com/
Firetrail Internet Services Limited http://www.aphroland.org/
Everett, WA 425-348-7336 http://www.linuxpowered.net/
Powered By: http://comedy.aphroland.org/
Debian 2.1 Linux 2.0.36 SMP http://yahoo.aphroland.org/
-----------------------------------------[mailto:aphro@netquest.net ]--
12:30am up 140 days, 12:27, 2 users, load average: 1.99, 1.67, 1.57
Reply to: