Hello, On Thu, 21 Sep 2000, Robert Casties wrote:
Generally this is desirable in the interest of security but your X terminals have to support it or they have to be on a separate segment with a machine doing SSH tunneling to the server (sort of VPN).
Could you point me to some ressource elaborating on that?
Because I am afraid of people sniffing on my LAN grabbing passwords from
users authenticating against a server using XDMCP. I know about the
Cookie-Mechanism...but first there has to happen some sort of handshake
between the server and the authenticating client...I'm sure someone could
(in case he can monitor the whole chatter) use this information in order
to exctract a username/passwd-pair (is this true???).
Is there a way of anhancing the security of the whole
XDMCP-Authentication-Thingy?
Regards,
-Sebastian
--
Sebastian Fallert | "The maximum length of a funtion
Get PGP Key available at public | is inversely proportional to the
Keyservers. | complexity and indentation level
Get PGP Fingerprint/Key or Geekcode | of that funtion."
fingering sfaller@linux01.gwdg.de | (Linux Kernel Documentation)