From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 25690 invoked by alias); 2 Jan 2004 18:28:48 -0000 Mailing-List: contact cygwin-xfree-help@cygwin.com; run by ezmlm Precedence: bulk List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-xfree-owner@cygwin.com Mail-Followup-To: cygwin-xfree@cygwin.com Reply-To: cygwin-xfree@cygwin.com Received: (qmail 25683 invoked from network); 2 Jan 2004 18:28:48 -0000 Received: from unknown (HELO central.ixn.com) (65.19.132.2) by sources.redhat.com with SMTP; 2 Jan 2004 18:28:48 -0000 Received: from msu.edu (m400d5e42.tmodns.net [66.94.13.64]) (authenticated bits=0) by central.ixn.com (8.12.10/8.12.10) with ESMTP id i02ISUMN095517 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Fri, 2 Jan 2004 13:28:41 -0500 (EST) Message-ID: <3FF5B846.4050502@msu.edu> Date: Fri, 02 Jan 2004 18:28:00 -0000 From: Harold L Hunt II User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.6b) Gecko/20031205 Thunderbird/0.4 MIME-Version: 1.0 To: cygwin-xfree@cygwin.com Subject: Re: Possible to use clipboard with remote/xdm connection? References: <20031231221603.GA320@areti.co.uk> <3FF34EE3.9070300@msu.edu> <20040101153702.GB1971@areti.co.uk> <20040102140446.GA4425@areti.co.uk> <20040102144403.GA4596@areti.co.uk> <20040102180025.GA5079@areti.co.uk> In-Reply-To: <20040102180025.GA5079@areti.co.uk> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Status: No, hits=0.0 required=5.5 tests=none autolearn=no version=2.60 X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) X-SW-Source: 2004-01/txt/msg00023.txt.bz2 List-Id: Chris Green wrote: > On Fri, Jan 02, 2004 at 05:10:57PM +0100, Alexander Gottwald wrote: > >>On Fri, 2 Jan 2004, Chris Green wrote: >> >> >>>But if I run xhost in that session I will be setting xhost permissions >>>on the Linux Slackware system which is most definitely not what is >>>required. >> >>No. It sets the permissions of the __xserver__ to which the session belongs. >> >>Try it! >> >>linux$ echo $DISPLAY >>win2k.local.net:0.0 >>linux$ xhost 127.0.0.1 >>127.0.0.1 being added to access control list >>linux$ xhost >>access control enabled, only authorized clients can connect >>INET:localhost >>linux$ DISPLAY=127.0.0.1:0.0 xhost >>xhost: unable to open display "127.0.0.1:0.0" >> >>win2k$ DISPLAY=127.0.0.1:0 xhost >>access control enabled, only authorized clients can connect >>INET:win2k >> >> >>>It seems very odd that xhost requires access to the local display in >>>order to work as you need xhost to set permission to acces the local >>>display - sort of catch 22. >> >>Same with the gates of a castle. To get in, you must open it from inside. >>This is the main principle of security. You can not allow those who have >>no access to change the permissions. >> > > ... but I am "within the castle", I'm sitting running a script on the > win2k system and I can't see how to run xwinclip there because it > won't give me permission to display on the terminal that I'm already > using. Argue if you want, it won't change the way that the X security model was designed and works. > It's of little use to be able to allow xwinclip to run on the win2k > system by executing something on the Linux system. One wants a means > to do it from the X startup script. Sure, one wants to, but there is not a way to do it. Patches are welcome. Harold