[ubuntu-hardened] Securing access to the X Server.
Seth Arnold
seth.arnold at canonical.com
Thu Oct 20 13:23:23 UTC 2016
On Thu, Oct 20, 2016 at 02:44:22PM +0200, daniel curtis wrote:
> Over a decade or even longer? I thought, that this is a matter of a few
> years, but not a decade! :- )
Heh, just for fun I went looking through the Debian bug archive; I found
this one, which added -nolisten TCP to gdm back in 2001:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=92909
> There is one thing, which bothers me; in his post, Mr Deslauriers wrote,
> that Ubuntu 12.04 uses gnome-screensaver, not XScreenSaver, so there is no
> need to edit /etc/X11/app-defaults/XScreenSaver file, right? But, what
> about users with Desktop Environment different than GNOME?
You only have to edit /etc/X11/app-defaults/XScreenSaver if you want to
make the settings for all users on the computer. Individual users can of
course make their own ~/.xscreensaver or ~/.Xdefaults files with their own
settings.
Note that automatic locking is not safe in X11. If you happen to select a
menu entry from popular toolkits or perform other operations before
walking away from your computer, then the screensaver won't be able to
grab exclusive use of the input devices.
The only safe way to lock your X session is to manually lock it before
walking away.
Thanks
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-hardened/attachments/20161020/dd9fb4a3/attachment.pgp>
More information about the ubuntu-hardened
mailing list