X server access


X server access from arbitrary hosts.


A remote intruder can control the keyboard, mouse and screen.


The X Window system implements an environment where applications use the network to interact with a user workstation's display, keyboard and mouse. There are two classes of programs:

The problem

When the X server permits access from arbitrary hosts on the network, a remote intruder can connect to the X server and:


Remove all instances of the xhost + command from the system-wide Xsession file, from user .xsession files, and from any application programs or shell scripts that use the X window system.

Other tips