Re: X11 exploit info
On Sunday 12 February 2006 07:38, Christian Mueller wrote:[color=blue]
> I'm talking about the things my ssh client *doesn't* ever get to see =[/color]
> let alone send it to a compromised server counterpart, for example =[/color]
> passwords I enter in my locally running browser. This too can =[/color]
> be snooped if X11 forwarding is on (because the X11 API allows it =[/color]
> and "ssh -X" forwards the X11 requests). =A0[/color]
Your passwords can be recovered by exploits running in user mode
independent of ssh and/or x11 forwarding. x11 is beginning to look
to me as about as secure as Microsoft Windows.
Lose, v., experience a loss, get rid of, "lose the weight"
Loose, adj., not tight, let go, free, "loose clothing"
>> Visit [url]http://mail.kde.org/mailman/listinfo/kde-devel#unsub[/url] to unsubscrib=[/color][/color]