New X11 trouble

This is a discussion on New X11 trouble within the Linux Security forums, part of the System Security and Security Related category; I have three hosts on my home network, hosta, hostb & hostc, and I'm having connection troubles amongst some ...


Go Back   Usenet Forums > System Security and Security Related > Linux Security

Reload this Page New X11 trouble

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 04-12-2006
Kevin the Drummer
 
Posts: n/a
Default New X11 trouble

I have three hosts on my home network, hosta, hostb & hostc, and
I'm having connection troubles amongst some of them.

hosta can run remote X11 applications on either hostb or hostc
without issue. hosta can run multiple applications at the same
time variously on hostb or hostc.

hostb can run X11 applications on hosta. hostb can only intermittently
run applications on hostc. For instance, when I try to start up an
xterm, running on hostc and displaying on hostb, then most of the time
the start-up will fail with this message:

X connection to hostc.mydom.com:10.0 broken (explicit kill or server shutdown).

On the occassions when the xterm does start, then I can launch
more X applications in that xterm.

hostc can't run X11 applications on either of the other two hosts.

Now, here's where I'm really confused. All three hosts have
identical ssh_config files, have identical sshd_config files,
have identical ~/.ssh/config files, and have identical /etc/hosts
files.

ssh_config contains:

Host *
ForwardAgent yes
ForwardX11 yes
ForwardX11Trusted yes
Protocol 2
StrictHostKeyChecking ask

sshd_config contains:

Protocol 2
HostKey /etc/ssh/ssh_host_key
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key
PermitRootLogin no
X11Forwarding yes
X11DisplayOffset 10
X11UseLocalhost no
UsePrivilegeSeparation no
MaxStartups 3
Subsystem sftp /usr/lib/ssh/sftp-server

~/.ssh/config contains:

Compression yes
ForwardX11 yes
ForwardAgent no
ForwardX11Trusted yes

For a short time I had a problem with /etc/hosts on hostc in that
it had 127.0.0.1 listed as one of the addresses of hostc, causing
me to groom /etc/hosts until they looked good, and look identical
across the hosts.

All 3 hosts are running OpenSSH 4.3p1. hosta is a Mandrake 10.1
system. hostb is a Mandrake 9.0 system. hostc is a Mandriva
2006.0 system.

I'm thinking of going back to OpenSSH 3.7.1p2, which ran without
fail ever since I installed it shortly after its release. The
Mandriva 2006.0 system ran without fail with OpenSSH 4.2p1.
Maybe that would be a good choice. I'd rather fix the 4.3p1
implementation tho, since it includes improved security over
prior versions.

Any advice? Thanks....

--
PLEASE post a SUMMARY of the answer(s) to your question(s)!
Show Windows & Gates to the exit door.
Unless otherwise noted, the statements herein reflect my personal
opinions and not those of any organization with which I may be affiliated.
Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 02:08 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0