SSH -X doesn't work without an export DISPLAY

Timo Schoeler tschoeler at wernermedia.de
Mon Jul 9 12:04:10 UTC 2007


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Thus Michel Dubois <mdubois at polytech.unice.fr> spake on Mon, 9 Jul 2007
14:05:40 +0200:

> Last question, 
> 
> I readed that the Xforward used the 6010 TCP port. On my red hat this
> port is not open. 
> user at SUNserver :~$ ssh -X redhat 
> Last login: Mon Jul  9 11:48:58 2007 from SUNserver
> [user at redhat ~]$ telnet localhost 6010
> Trying 10.0.2.7...
> telnet: connect to address 10.0.2.7: Connection refused
> telnet: Unable to connect to remote host: Connection refused
> 
> And when I try to do a "xhost +SUNserver" on my redhat, I got :
> xhost:  unable to open display "localhost:12.0"
> 
> any Idea
> Thanks in advance.............. 

Port 22 is sufficient to use X11 forwarding, no need to open other
ports. That's not the problem, for sure...

> On Monday 09 July 2007 13:24:50 you wrote:
> > A great help will be the ssh+sshd config. files, sshd daemon startup
> > parameters, in general sshd specification + security from your x
> > display server.Not to be solved easy, this one, needs research, at
> > least for me.
> >
> > On Mon, 2007-07-09 at 10:33 +0200, Michel Dubois wrote:
> > > On Saturday 07 July 2007 10:36:15 harold molly wrote:
> > > > Is there specific configuration required to connect to the
> > > > ssh daemon on the destination server, solaris sshd man page?
> > >
> > > As the "ssh -Y" is not supported by the ssh client  of SUN, I
> > > don't know how to do.
> > > I think, there is a problem with the authorization cookies.
> > > I forward you an extract of the ssh man page about the
> > > Xforwarding :
> > >
> > > User Commands                                              ssh(1)
> > >
> > >      -X    Enables X11 forwarding. This can also be specified  on
> > >            a per-host basis in a configuration file.
> > >
> > > ENVIRONMENT VARIABLES
> > >      ssh will normally set the following environment variables:
> > >
> > >      DISPLAY
> > >            The DISPLAY variable indicates the location of the X11
> > >            server.  It  is automatically set by ssh to point to a
> > >            value of the form hostname:n where hostname  indicates
> > >            the  host  where  the  shell runs, and n is an integer
> > >            greater than or equal to  1.  ssh  uses  this  special
> > >            value to forward X11 connections over the secure chan-
> > >            nel. The user should normally not set  DISPLAY  expli-
> > >            citly, as that will render the X11 connection insecure
> > >            (and will  require  the  user  to  manually  copy  any
> > >            required authorization cookies).
> > >
> > > I tried this command on Red Hat server but it doesn't work :
> > > xauth add `echo "${DISPLAY}" | sed 's/.*\(:.*\)/\1/'` . `mcookie`
> 
> 
> 
> -- 
> Cordialement.
> ----------------------
> Michel Dubois
> Ingénieur Support CIMPACA

- -- 
Timo Schoeler (Unix freak, IT team leader)
Key fingerprint = 592C 8AA1 FC66 7BFB F3DA  B4DA 707C F906 087F 9768

mailto:tschoeler at wernermedia.de
At Desk +49 (0)30 2 69 47-413 | Company -400 | Fax -300

Werner Media Group GmbH | http://www.wernermedia.de
Grossbeerenstrasse 186-192, 12277 Berlin, Germany

Geschaeftsfuehrer: Nicholas Werner
Amtsgericht/Handelsregister: Sitz Berlin,
Amtsgericht Charlottenburg, HRB 80337,
Ust-ID. DE217618105, St.-Nr. 29/032/07344
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (OpenBSD)

iD8DBQFGkiQ6cHz5Bgh/l2gRApMzAKCesb0xYcrSKVh+9/ncgqiat0YIZgCgrBmn
l7rLbevbGoWID8ILEvDsneQ=
=lwPl
-----END PGP SIGNATURE-----




More information about the redhat-sysadmin-list mailing list