Peter's Blog

Redefining the Impossible

X over ssh and vnc

Submitted by Peter on Wed Feb 08 2006 13:49 over 3 years ago

Just got X going over ssh again, so a reminder to self on how I did it:

make sure
```
X11Forwarding yes
```
is in /etc/ssh/sshd_config at the server end
then, in client:
```
ssh -X -2 user@server
```
- -X means X forwarding
- -2 forces v 2 ssh protocol
this should give you a remote terminal. In it start whatever application, e.g.
```
xclock &
```
this will be running on the remote system but will display locally.
if you get the error "cannot connect to X server localhost:10.0" then you need to do
```
xhost +
```
in a local terminal: the error means the remote app cannot open an X window on your local system, xhost + releases this.

Filed under: linux ssh x

3 Comments

Anonymous Says:

Tue Feb 21 2006 21:33 over 3 years ago

"xhost +" is bad, mmmkay?

It allows ANYONE to connect to your X server. Hopefully, it's a moot point because you're behind some good firewalls, but it's bad practice. You should explicitly allow only the specific clients you're using.

dumb rules that don't protect abuse.xfree86.org/current/xhost.1.html

Nice Python struct post (node/1112) btw.

Peter Says:

Wed Feb 22 2006 12:44 over 3 years ago

I am behind a firewall so I am not too worried (Microsoft ISA server: wouldn't call it good though).

Peter

Dustin Boswell Says:

Thu Oct 02 2008 07:07 9 months ago

Yeah, I also agree about "xhost +" being a dangerous thing to do in general. If a hacker manages to ssh into your local machine, they can snoop all your X events (keystrokes, etc...)

I have a pretty good write-up about How X over SSH really works if you're curious.

Have Your Say

I welcome constructive comments or questions but I reserve the right to delete any comments that displease me.

Recent blog posts

Twitterings

1&1 control panel back but not my server so rebooted. Found glitch in new email->iphone mms setup so wasn't informed. Need new server.

Thu Jun 25 2009 08:54

1&1 dedicated server locked up and 1&1 administrative login giving me 500 errors so can't fix. 1&1 useless on two counts or just one biggie?

Thu Jun 25 2009 08:42

Woohoo with iPhone 3 I can use my o2 broadband free email -> mms allowance. Server lockup alerts won't be 10p texts!

Fri Jun 19 2009 07:23

@KimGodard The pragmatic programmers ruby book (http://tinyurl.com/mpego) has a great guide (chapter Extending Ruby) works in cygwin nicely

Thu Jun 04 2009 10:12

@mintty_cygwin tried rebaseall, peflags, all that but my main test involves 19 extension dlls and too many rebasing probs. Love mintty btw.

Wed Jun 03 2009 09:50

@KimGodard for me cygwin has it's own problems. I test c code by compiling ruby extensions and cygwin no longer forks without dll problems.

Wed Jun 03 2009 09:23

@KimGodard I used E about a year ago. Only a few textmate bundles worked and no instructions on using them.

Wed Jun 03 2009 09:18

@KimGodard I switched back to windows native and everything works much better. It's hassle getting sqlite/mysql/rmagick running but done now

Sat May 30 2009 08:05

@KimGodard cygwin kinda works but I had problems with things like /cygdrive path names, irb locking up etc. I Still like rubymine tho.

Sat May 30 2009 08:03

Nectar emailed me to say I have 16,000 points but nectar.com reluctant to tell me what I can use them for, too focused on me getting more.

Fri May 29 2009 07:56

Ooh, IE8 being pushed onto me as I type. If I try really hard I might care.

Thu May 28 2009 08:37

New blog post: AMock Mocking Library http://petersblog.org/node/2257

Wed May 27 2009 10:36

New blog post: Weathermap Pro http://petersblog.org/node/2255

Wed May 27 2009 07:37

Nicest ruby quick ref I've found so far: http://www.zenspider.com/Languages/Ruby/QuickRef.html

Tue May 26 2009 09:19

New blog post: Blog iphone interface http://petersblog.org/node/2252

Mon May 25 2009 19:52

Peter's Moblog

Peter's Blog

X over ssh and vnc

X over ssh and vnc

Have Your Say

Recent blog posts

Twitterings

Stuff