On Sun, Sep 10, 2023 at 06:51:58PM +0200, Daniele B. wrote:
> Hello,
>
> Trying to securing my X server beyond my pf conf, and sorry if I do
> again the compliments to the quality of the X engineering (well beyond
> OpenBSD devs effort, at X origins).
>
> 'man X' says:
>
> ACCESS CONTROL
>
> An X server can use several types of access control. Mechanisms
> provided in Release 7 are:
> Host Access Simple host-based access control.
> MIT-MAGIC-COOKIE-1 Shared plain-text "cookies".
> XDM-AUTHORIZATION-1 Secure DES based private-keys.
> SUN-DES-1 Based on Sun's secure rpc system, etc
>
>
> Launching:
> # xauth -f .XauthorityDan generate :0.0 HOST ACCESS
>
> I get the following error about the erroneous protocol name:
>
> SecurityBadAuthorizationProtocol (invalid authorization name or data)
> xauth: (argv):1: couldn't generate authorization
>
> Indeed, I grasped that "Host Access" is wrong in man.
>
> So I'm here to ask the protocol token to pass to xauth to use
> host access control mechanism.
>
> Thanks, appreciated.
See `man Xsecurity`. Host Access mode does not use xauth.
-Otto
