_index

TODO|| ---|---|--- Item | Status Enable crosslinking | done Enable profiling | no-profiling for now. Adding crosslinks in documents | done Master databases for website target | done Pretty up xorg.css | done Pretty up xorg.xsl | done Hyphenation warning during build | Figured out. Uses jarfile but need to look more into .jar file licensing Conversion of .gif to .svg | ? New Index page | 20% Initial Docbook conversion | done Linking to doxygen | not started Set colwidth in tables to .0 (floating point)' | 80% Either change fonts in xorg.xsl or figure out which fonts are needed. | not started Table warnings on during build | not started epub generation (with dbtoepub) | not started Catch up with http://tronche.com/gui/x/ in regards to niceness of webpages. | not started change to with tgroups | not started change ... to ... for bolding | not started use where appropriate (see x11proto/sect1-9.xml for example) | not started Key Action's table in xkbproto, bulleted items offset. (~pg 24) | not started gifs in xkbproto, scaled wrong | not started

Link collection:

1) How to play a sound on xterm event (using xkbevd):

'ssh -X' vs 'ssh -Y' [12:46] general question. any real different between ssh -X and ssh -Y, '-Y' is for trusted connections but what does that actually mean? [12:47] -X limits what you can do [12:47] for security reason [12:47] (to block key loggers etc) [12:47] marcoz: -X uses the XSECURITY extension to create an "untrusted" magic cookie. Clients that connect via -X can't do certain things (eg. GetImage from the root window) [12:47] == gustavold [gustavold@nat/ibm/x-bdcunkwjseyyztxg] has quit [Ping timeout: 245 seconds] [12:47] while -Y is pretty much like a local connection [12:49] == jg_ [~jg@135.245.8.6] has quit [Read error: Connection reset by peer] [12:49] ok, so default should be -X and not -Y then. [12:50] do you regularly use them? just curious if in practice you normally have trouble with -X where -Y works or vice versay [12:51] -X breaks many things if you're running a server that actually supports the security extension. [12:51] -X is a good default, but there are a few corner cases where -X doesn't work. eg. running an Xephyr with no other clients, SSH connects, creates a new magic cookie, disconnects, the server resets and forgets the cookie, the x client connects and the server rejects it. [12:51] gtk mostly gets it right but i don't think xaw or motif do [12:52] also the additional "security" created by -X is pretty much illusory anyway [12:52] Also, the obvious things that -X intentionally prevents. It prevents screen captures, so you can't (usefully) run a screen capture over it. [12:52] the attack it prevents is people being able to override file MAC on the remote machine, but if your attacker can do that they can just replace the binary you think you're running. [12:53] so any interaction you're having with the forwarded app is already suspect [13:30] -X also breaks things if you don't have the security extension now, as since OpenSSH 5.6 it enforces ForwardX11Timeout even when falling back to a trusted connection...

EVoC/GSoC email to students to drum up interest: Work in progress.


     * My name is Matt Dew and I work on the X.org project. X.org[1] is the X windowing system for Linux, BSD, UNIX.  If you run a GUI on linux or one of the BSDs or UNIXs then you most likely are using X.org. 

Sincerely, Matt Dew, X.org

[1] http://www.x.org/wiki [2] http://code.google.com/soc/ [3] http://www.x.org/wiki/XorgEVoC [4] http://www.x.org/wiki/SummerOfCodeIdeas



CategoryHomepage