maintainer-feedback requested: [Bug 221984] x11-servers/xorg-server: enable SECURITY extension
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Fri Sep 1 21:06:01 UTC 2017
Anton Yuzhaninov <citrin+pr at citrin.ru> has reassigned Bugzilla Automation
<bugzilla at FreeBSD.org>'s request for maintainer-feedback to x11 at FreeBSD.org:
Bug 221984: x11-servers/xorg-server: enable SECURITY extension
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=221984
--- Description ---
Created attachment 185979
--> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=185979&action=edit
enable SECURITY X server extension
Attached patch enables SECURITY extension for X server. This will allow 'ssh
-X' to work. Currently ssh -X fails, because 'xauth generate' can't grab auth
data from running X server.
This extension is enabled in xorg package for many (may be most) Linux distros.
As I know it was disabled by default in xorg when XACE was added. But XACE is
not fully replaces SECURITY extension:
"In Red Hat Enterprise Linux 6, the X Security extension (XC-SECURITY) has been
disabled and replaced by X Access Control Extension (XACE). However, XACE does
not yet include functionality that was previously available in XC-SECURITY.
With this update, XC-SECURITY is enabled in the xorg-x11-server spec file on
Red Hat Enterprise Linux 6." [1]
1.
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/6
.5_Technical_Notes/xorg-x11-server.html
I've not tested this change with slave ports, so in my patch I've added this
option only for ${SLAVE_PORT} == "no".
More information about the freebsd-x11
mailing list