![]() The security risk of using X11 forwarding is that the client's X11 display server maybe exposed to attack when the SSH client requests forwarding(see the warnings for ForwardX11 in ssh_config(5)). Additionally, the authentication spoofing and authentication data verification and substitution occur on the client side. ![]() When X11 forwarding is enabled, there may be additional exposure to the server and to client displays if the sshd(8) proxy display is configured to listen on the wildcard address (see X11UseLocalhost), though this is not the default. Specifies whether X11 forwarding is permitted. ![]()
0 Comments
Leave a Reply. |