It's a good thing that i misspelled SUMMARY the first time.
After reading the many responses I've include those the helped me the most.
In the end, I put into my .bash_profile the following
export XAUTHORITY=~tom/.Xauthority
and problem is solved, without security risks.
Thanks to all
From: "Serguei Patchkovskii" <patchkov_at_ucalgary.ca>
> all I needed to do was to
> thor/tom 262 > xhost +localhost
> localhost being added to access control list
> thor/tom 263 > su
>
> before su.
No, this is not the right solution. If you do this any users
with a valid login on your machine will be able to snoop on
your root sessions (and even take them over if they so wish).
*After* doing su, copy the .Xauthority file from your home
directory to /
Regards,
/Serge.P
From: "Kevin Oberman" <oberman_at_es.net>
setenv XAUTHORITY ~your-login-name/.Xauthority
or the functional equivalent for whatever shell you use. Your logon
account ownes the display and root does not.
R. Kevin Oberman, Network Engineer
> From: Tom Linden <tom_at_kednos.com>
>
> do you mean that I have to do this every time I want to su?
Yes. I can pretty much type it in my sleep.
This is the only secure way to do the job. The alternative is to
xhost +localhost, but that is a potential security problem if the
system is multi-user.
Tk refuses to allow IPC on systems with a non-empty xhosts list for
security reasons, so it also will break some applications written in
Tcl/Tk including exmh. (exmh is the one that made me aware of the
problem.)
R. Kevin Oberman, Network Engineer
Received on Thu Jan 07 1999 - 22:03:30 NZDT