Alexandr Malusek wrote:
Michael James
writes: The setting that stops you is on the client side. On those workstation Suse 9.0 boxes edit /etc/ssh/ssh_config to finish with
host * ForwardX11 yes
THAT'S the one that isn't yes by default.
It's safer to keep the default and use the -X option only for computers that are "trusted".
-- A.M.
I solved this by using the sshd_config setting to ForwardX11 yes I really don't see how this can be any less safe since at this point you have already established an ssh connection to the machine. Unless there is something about running X that isn't pretected by ssh tunneling or worse. The worst I've found is that not all applications (Mozilla) will work correctly when running on a client+server that are not of the same machine. But it was no less secure. Regardless of all the security issues, this is all in a protected environment of sorts. I use ssh to contact my DMZ servers and would like to set them up headless. My next question is how to set up a remote X login to a DMZ server running through X.