From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <cygwin-xfree-return-17199-listarch-cygwin-xfree=sources.redhat.com@cygwin.com>
Received: (qmail 9707 invoked by alias); 20 Nov 2003 00:13:18 -0000
Mailing-List: contact cygwin-xfree-help@cygwin.com; run by ezmlm
Precedence: bulk
List-Subscribe: <mailto:cygwin-xfree-subscribe@cygwin.com>
List-Archive: <http://sources.redhat.com/ml/cygwin-xfree/>
List-Post: <mailto:cygwin-xfree@cygwin.com>
List-Help: <mailto:cygwin-xfree-help@cygwin.com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-xfree-owner@cygwin.com
Mail-Followup-To: cygwin-xfree@cygwin.com
Reply-To: cygwin-xfree@cygwin.com
Received: (qmail 9629 invoked from network); 20 Nov 2003 00:13:16 -0000
Received: from unknown (HELO nwkea-mail-1.sun.com) (192.18.42.13)
  by sources.redhat.com with SMTP; 20 Nov 2003 00:13:16 -0000
Received: from phys-d3-ha21sca-1 ([129.145.155.163])
	by nwkea-mail-1.sun.com (8.12.10/8.12.9) with ESMTP id hAK0DFUP028195
	for <cygwin-xfree@cygwin.com>; Wed, 19 Nov 2003 16:13:15 -0800 (PST)
Received: from Sun.COM (almas.SFBay.Sun.COM [129.145.23.120])
 by ha21sca-mail1.sfbay.sun.com
 (iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003))
 with ESMTP id <0HOM0006MJA244@ha21sca-mail1.sfbay.sun.com> for
 cygwin-xfree@cygwin.com; Wed, 19 Nov 2003 16:13:15 -0800 (PST)
Date: Thu, 20 Nov 2003 00:13:00 -0000
From: Alan Coopersmith <Alan.Coopersmith@Sun.COM>
Subject: Re: security, cvs, was Re: interface bindings of x-server
In-reply-to: <Pine.GSO.4.33.0311191836001.3666-100000@mail.puug.net>
To: Dave Dodge <dododge@dododge.net>
Cc: "roland@webde" <devzero@web.de>,
        Keith Whitwell <keith@tungstengraphics.com>,
        Keith Packard <keithp@keithp.com>, cygwin-xfree@cygwin.com,
        xserver@pdx.freedesktop.org
Message-id: <3FBC071A.6050002@Sun.COM>
Organization: Sun Microsystems
MIME-version: 1.0
Content-type: text/plain; format=flowed; charset=us-ascii
Content-transfer-encoding: 7bit
X-Accept-Language: en-us, en
User-Agent: Mozilla/5.0 (X11; U; SunOS sun4u; en-US; rv:1.2.1) Gecko/20030711
References: <Pine.GSO.4.33.0311191836001.3666-100000@mail.puug.net>
X-SW-Source: 2003-11/txt/msg00293.txt.bz2
List-Id: <cygwin-xfree.sourceware.org>

Dave Dodge wrote:
>>Why?  What benefit does a TCP loopback connection provide over the Unix
>>domain socket (which is generally faster on most OS'es)?
> 
> 
> Just a data point: I have lots of special-purpose accounts on my
> desktop system, for example when building package XYZ I might create a
> specific "xyz" user and group to do the build work, own the resulting
> files, etc. So it's very common for me to su over to one of these
> accounts and run things like emacs or application-specific GUI tools
> as that special user. I use "xhost +localhost" to let these other
> accounts display on my desktop; but I basically never have the need
> for connections to port 6000 from off-machine anymore (I use ssh for
> that instead).
> 
> [I realize xauth, or changing permissions on the unix socket, could
> probably solve this as well. But the localhost method is really,
> really easy :-]

"xhost +LOCAL:" would be the equivalent for the Unix socket or other
local communications mechanisms.

-- 
	-Alan Coopersmith-         alan.coopersmith@sun.com
	 Sun Microsystems, Inc.    -     Sun Software Group
	 User Experience Engineering: G11N: X Window System