SSH X11 forwarding only works when using trusted
Clash Royale CLAN TAG#URR8PPP
up vote
0
down vote
favorite
When I try to use X11 forwarding, I am getting the error, "cannot open display" message.
If I use trusted X11 forwarding "-Y", then it works as expected. I can use x2go without any issues. My ssh_config and sshd_config both permit X11 Forwarding (both on remote server and on local client).
Additionally, I even allowed X access from all clients via xhost +. When remoting into my box (without -Y), I see the DISPLAY env variable is unset. When remoting into my box (with -Y), I see the DISPLAY env variable is set. If I merely try to set the DISPLAY env variable (even when not using -Y), that has no effect.
I believe I should not be using trusted X11 forwarding as there is a slight security risk by doing so (even though it works).
ssh x11
asked Nov 29 '17 at 3:25
Walter
5022616
add a comment |Â
up vote
0
down vote
favorite
When I try to use X11 forwarding, I am getting the error, "cannot open display" message.
If I use trusted X11 forwarding "-Y", then it works as expected. I can use x2go without any issues. My ssh_config and sshd_config both permit X11 Forwarding (both on remote server and on local client).
Additionally, I even allowed X access from all clients via xhost +. When remoting into my box (without -Y), I see the DISPLAY env variable is unset. When remoting into my box (with -Y), I see the DISPLAY env variable is set. If I merely try to set the DISPLAY env variable (even when not using -Y), that has no effect.
I believe I should not be using trusted X11 forwarding as there is a slight security risk by doing so (even though it works).
ssh x11
asked Nov 29 '17 at 3:25
Walter
5022616
add a comment |Â
up vote
0
down vote
favorite
up vote
0
down vote
favorite
When I try to use X11 forwarding, I am getting the error, "cannot open display" message.
If I use trusted X11 forwarding "-Y", then it works as expected. I can use x2go without any issues. My ssh_config and sshd_config both permit X11 Forwarding (both on remote server and on local client).
Additionally, I even allowed X access from all clients via xhost +. When remoting into my box (without -Y), I see the DISPLAY env variable is unset. When remoting into my box (with -Y), I see the DISPLAY env variable is set. If I merely try to set the DISPLAY env variable (even when not using -Y), that has no effect.
I believe I should not be using trusted X11 forwarding as there is a slight security risk by doing so (even though it works).
ssh x11
asked Nov 29 '17 at 3:25
Walter
5022616
When I try to use X11 forwarding, I am getting the error, "cannot open display" message.
If I use trusted X11 forwarding "-Y", then it works as expected. I can use x2go without any issues. My ssh_config and sshd_config both permit X11 Forwarding (both on remote server and on local client).
Additionally, I even allowed X access from all clients via xhost +. When remoting into my box (without -Y), I see the DISPLAY env variable is unset. When remoting into my box (with -Y), I see the DISPLAY env variable is set. If I merely try to set the DISPLAY env variable (even when not using -Y), that has no effect.
I believe I should not be using trusted X11 forwarding as there is a slight security risk by doing so (even though it works).
ssh x11
asked Nov 29 '17 at 3:25
Walter
5022616
asked Nov 29 '17 at 3:25
Walter
5022616
asked Nov 29 '17 at 3:25
Walter
5022616
asked Nov 29 '17 at 3:25
Walter
5022616
5022616
add a comment |Â
add a comment |Â
2 Answers
2
active
oldest
votes
up vote
0
down vote
accepted
This is broken as per gentoo bug:
https://bugs.gentoo.org/237778
https://forums.gentoo.org/viewtopic-t-842298-start-0.html
answered Dec 12 '17 at 12:34
Walter
5022616
add a comment |Â
up vote
-1
down vote
Launching apps over X11 can be really slow. I recommend tunneling VNC over SSH.
https://www.cyberciti.biz/tips/tunneling-vnc-connections-over-ssh-howto.html
answered Nov 29 '17 at 22:41
bootbeast
993
This is not what I'm asking.
– Walter
Dec 1 '17 at 2:22
Follow your bliss. I've used VNC tunneled over SSH on 100+ customer systems all over the world without a problem, and I've seen GUIs run over X11 forwarding work very, very slowly.
– bootbeast
Dec 6 '17 at 0:51
add a comment |Â
2 Answers
2
active
oldest
votes
2 Answers
2
active
oldest
votes
active
oldest
votes
active
oldest
votes
up vote
0
down vote
accepted
This is broken as per gentoo bug:
https://bugs.gentoo.org/237778
https://forums.gentoo.org/viewtopic-t-842298-start-0.html
answered Dec 12 '17 at 12:34
Walter
5022616
add a comment |Â
up vote
0
down vote
accepted
This is broken as per gentoo bug:
https://bugs.gentoo.org/237778
https://forums.gentoo.org/viewtopic-t-842298-start-0.html
answered Dec 12 '17 at 12:34
Walter
5022616
add a comment |Â
up vote
0
down vote
accepted
up vote
0
down vote
accepted
This is broken as per gentoo bug:
https://bugs.gentoo.org/237778
https://forums.gentoo.org/viewtopic-t-842298-start-0.html
answered Dec 12 '17 at 12:34
Walter
5022616
This is broken as per gentoo bug:
https://bugs.gentoo.org/237778
https://forums.gentoo.org/viewtopic-t-842298-start-0.html
answered Dec 12 '17 at 12:34
Walter
5022616
answered Dec 12 '17 at 12:34
Walter
5022616
answered Dec 12 '17 at 12:34
Walter
5022616
answered Dec 12 '17 at 12:34
Walter
5022616
5022616
add a comment |Â
add a comment |Â
up vote
-1
down vote
Launching apps over X11 can be really slow. I recommend tunneling VNC over SSH.
https://www.cyberciti.biz/tips/tunneling-vnc-connections-over-ssh-howto.html
answered Nov 29 '17 at 22:41
bootbeast
993
This is not what I'm asking.
– Walter
Dec 1 '17 at 2:22
Follow your bliss. I've used VNC tunneled over SSH on 100+ customer systems all over the world without a problem, and I've seen GUIs run over X11 forwarding work very, very slowly.
– bootbeast
Dec 6 '17 at 0:51
add a comment |Â
up vote
-1
down vote
Launching apps over X11 can be really slow. I recommend tunneling VNC over SSH.
https://www.cyberciti.biz/tips/tunneling-vnc-connections-over-ssh-howto.html
answered Nov 29 '17 at 22:41
bootbeast
993
This is not what I'm asking.
– Walter
Dec 1 '17 at 2:22
Follow your bliss. I've used VNC tunneled over SSH on 100+ customer systems all over the world without a problem, and I've seen GUIs run over X11 forwarding work very, very slowly.
– bootbeast
Dec 6 '17 at 0:51
add a comment |Â
up vote
-1
down vote
up vote
-1
down vote
Launching apps over X11 can be really slow. I recommend tunneling VNC over SSH.
https://www.cyberciti.biz/tips/tunneling-vnc-connections-over-ssh-howto.html
answered Nov 29 '17 at 22:41
bootbeast
993
Launching apps over X11 can be really slow. I recommend tunneling VNC over SSH.
https://www.cyberciti.biz/tips/tunneling-vnc-connections-over-ssh-howto.html
answered Nov 29 '17 at 22:41
bootbeast
993
answered Nov 29 '17 at 22:41
bootbeast
993
answered Nov 29 '17 at 22:41
bootbeast
993
answered Nov 29 '17 at 22:41
bootbeast
993
993
This is not what I'm asking.
– Walter
Dec 1 '17 at 2:22
Follow your bliss. I've used VNC tunneled over SSH on 100+ customer systems all over the world without a problem, and I've seen GUIs run over X11 forwarding work very, very slowly.
– bootbeast
Dec 6 '17 at 0:51
add a comment |Â
This is not what I'm asking.
– Walter
Dec 1 '17 at 2:22
Follow your bliss. I've used VNC tunneled over SSH on 100+ customer systems all over the world without a problem, and I've seen GUIs run over X11 forwarding work very, very slowly.
– bootbeast
Dec 6 '17 at 0:51
This is not what I'm asking.
– Walter
Dec 1 '17 at 2:22
This is not what I'm asking.
– Walter
Dec 1 '17 at 2:22
Follow your bliss. I've used VNC tunneled over SSH on 100+ customer systems all over the world without a problem, and I've seen GUIs run over X11 forwarding work very, very slowly.
– bootbeast
Dec 6 '17 at 0:51
Follow your bliss. I've used VNC tunneled over SSH on 100+ customer systems all over the world without a problem, and I've seen GUIs run over X11 forwarding work very, very slowly.
– bootbeast
Dec 6 '17 at 0:51
add a comment |Â
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f407635%2fssh-x11-forwarding-only-works-when-using-trusted%23new-answer', 'question_page');
);
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
