-
Security
Hi Gurus,
I just installed Knoppix 3.3 on my HDD. It works incredibly well, but I have a problem with the security level. I do use Knoppix to connect on other unix servers (Sun, HP, ...) and develop on those machines. The trouble is that a telnet works ok but I can't run any graphical interface because of DISPLAY not reachable. However, I have defined and exported the DISPLAY as found in 'ifconfig'. I have also enabled external display through 'xhost +'. Finally, I've found in /etc/hosts.allow and /etc/hosts.deny that the config was set up as 'PARANOID'. I've renamed both files (according to the man page, lack of file opens the connection). As long as I do not run a server but a workstation, security is not a major constraint for me. I'm missing a config file somewhere to enable DISPLAY to pass through but where. While testing, I realized that even assigning the IP address to the user knoppix (rather than the hos name) causes the same problem.
Could anyone help on this ?
TIA,
Pierre
-
Senior Member
registered user
Umm, why would you want to use telnet in the first place ?
ssh is safer and it is handy also in places where you don't need security.
-
![Quote](images/misc/quote_icon.png)
Originally Posted by
windos_no_thanks
Umm, why would you want to use telnet in the first place ?
ssh is safer and it is handy also in places where you don't need security.
Good question I didn't ask myself, but I assume it would make no difference in the current situation: graphical apps can't open the display and do abort. You could test it youself:
1) 'ifconfig' to determine your IP address
2) export DISPLAY=IP address:0.0 (192.168.1.10:0.0 for example)
3) 'xclock' returns Error: Can't open display: ...
Any idea?
TIA,
Pierre
-
Senior Member
registered user
![Quote](images/misc/quote_icon.png)
Originally Posted by
pierrevn
![Quote](images/misc/quote_icon.png)
Originally Posted by
windos_no_thanks
Umm, why would you want to use telnet in the first place ?
ssh is safer and it is handy also in places where you don't need security.
Good question I didn't ask myself, but I assume it would make no difference in the current situation: graphical apps can't open the display and do abort. You could test it youself:
1) 'ifconfig' to determine your IP address
2) export DISPLAY=IP address:0.0 (192.168.1.10:0.0 for example)
3) 'xclock' returns Error: Can't open display: ...
Any idea?
TIA,
Pierre
You are looking for the setting nolisten tcp in the file /etc/kde3/kdm/Xservers if you are doing this in KDE.
[edit]
You would have to restart kdm for the changes to take effect with /etc/init.d/kdm restart as root this best done from a console login unless you want to lose any unsaved work when KDE re-starts.
[/edit]
-
Thanks to you, Stephen: I removed this 'nolisten tcp' from the file and it works now as I expect. Great!
Cheers,
Pierre
-
Senior Member
registered user
![Quote](images/misc/quote_icon.png)
Originally Posted by
pierrevn
![Quote](images/misc/quote_icon.png)
Originally Posted by
windos_no_thanks
Umm, why would you want to use telnet in the first place ?
ssh is safer and it is handy also in places where you don't need security.
Good question I didn't ask myself, but I assume it would make no difference in the current situation: graphical apps can't open the display and do abort. You could test it youself:
1) 'ifconfig' to determine your IP address
2) export DISPLAY=IP address:0.0 (192.168.1.10:0.0 for example)
3) 'xclock' returns Error: Can't open display: ...
Any idea?
TIA,
Pierre
I see you already got it working but using ssh should have made a difference. Using the -X switch (by default on in knoppix so you usually don't need to specify it) ssh forwards the
X connections through the encrypted pipe. The application on the remote machine thinks
it is using a display on the same machine, your X-server also thinks the application is on the
same machine as itself and everyone is happy.
Similar Threads
-
By eadz in forum Hdd Install / Debian / Apt
Replies: 11
Last Post: 11-04-2010, 09:02 PM
-
By NetKatz in forum Hdd Install / Debian / Apt
Replies: 2
Last Post: 05-02-2004, 02:38 PM
-
By RNK in forum Customising & Remastering
Replies: 13
Last Post: 04-29-2004, 12:37 PM
-
By Edix in forum Hdd Install / Debian / Apt
Replies: 1
Last Post: 11-10-2003, 08:20 PM
-
By kipizit in forum General Support
Replies: 1
Last Post: 11-07-2003, 03:08 AM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
![1U BareMetal pfsense opnsense Router Firewall DNS Server 6x 10GB Ethernet Ports picture](/store/img/fxsAAOSwZD5l6PSG/s-l225//1U-BareMetal-pfsense-opnsense-Router-Firewall-DNS-.jpg)
1U BareMetal pfsense opnsense Router Firewall DNS Server 6x 10GB Ethernet Ports
$149.00
![Custom Server 15](/store/img/uCMAAOSw3xhj3a06/s-l225//Custom-Server-15-Depth-X11SSH-F-E3-1270-V6-3-8Ghz-.jpg)
Custom Server 15" Depth X11SSH-F E3-1270 V6 3.8Ghz 4 Core - 128GB NVME 32GB RAM
$399.00
![1U 10 SFF Bay Supermicro Server X10DRW-iT 2x Xeon E5-2690 V4 128GB DDR4 RAM picture](/store/img/IxIAAOSwL5NjRJXz/s-l225//1U-10-SFF-Bay-Supermicro-Server-X10DRW-iT-2x-Xeon-.jpg)
1U 10 SFF Bay Supermicro Server X10DRW-iT 2x Xeon E5-2690 V4 128GB DDR4 RAM
$399.00
![VPS Windows / Linux Server - 12GB RAM, 4 Core, 1 TB HD, Unltd. bandwidth 1 Year picture](/store/img/BvgAAOSwxVReHqHl/s-l225//VPS-Windows-Linux-Server-12GB-RAM-4-Core-1-TB-HD-U.jpg)
VPS Windows / Linux Server - 12GB RAM, 4 Core, 1 TB HD, Unltd. bandwidth 1 Year
$281.15
![Suse Linux Standard Server 8 OEM PC/DVD - Brand New picture](/store/img/DKcAAOSwf8tmmbGc/s-l225//Suse-Linux-Standard-Server-8-OEM-PC-DVD-Brand-New.jpg)
Suse Linux Standard Server 8 OEM PC/DVD - Brand New
$69.99
![Linux PC or Development Server picture](/store/img/68AAAOSwHGNmdJHm/s-l225//Linux-PC-or-Development-Server.jpg)
Linux PC or Development Server
$65.00
![Eset Server Security 1 Year 1/2/3/5 Devices Digital Product Key Windows/Linux picture](/store/img/0LcAAOSwZ0Rmm277/s-l225//Eset-Server-Security-1-Year-1-2-3-5-Devices-Digita.jpg)
Eset Server Security 1 Year 1/2/3/5 Devices Digital Product Key Windows/Linux
$109.00
![Dell PowerEdge R210 II Rackmount Server Xeon E31220L 16Gb 1TB + 500GB LINUX 6.6 picture](/store/img/v-EAAOSwjuZmMTyR/s-l225//Dell-PowerEdge-R210-II-Rackmount-Server-Xeon-E3122.jpg)
Dell PowerEdge R210 II Rackmount Server Xeon E31220L 16Gb 1TB + 500GB LINUX 6.6
$129.00
![VPS Windows / Linux Server 8GB RAM + 1TB HDD + Unlimited Bandwidth [ 1 Year ] picture](/store/img/MkQAAOSwzfFeL8Me/s-l225//VPS-Windows-Linux-Server-8GB-RAM-1TB-HDD-Unlimited.jpg)
VPS Windows / Linux Server 8GB RAM + 1TB HDD + Unlimited Bandwidth [ 1 Year ]
$281.14
![Australia - Win/Linux Server- 2GB RAM, 1 Core,100 GB HD, Ultd Bandwidth 2 yrs picture](/store/img/BvgAAOSwxVReHqHl/s-l225//Australia-Win-Linux-Server-2GB-RAM-1-Core-100-GB-H.jpg)
Australia - Win/Linux Server- 2GB RAM, 1 Core,100 GB HD, Ultd Bandwidth 2 yrs
$200.82