11) cannot
usefully be used as an untrusted client.
Although having only two categories of applications doesn??™t provide much granularity
of control, it strikes a pragmatic balance between functionality and complexity.
The simplicity of this approach helps ensure that it is actually used, and used
correctly.
SECURITY enables the X server itself to generate magic cookies, and those magic
cookies can be associated with attributes. The two commonly used attributes are:
trust status
Either trusted or untrusted.
timeout
A time in seconds. If there are no connected clients authorized with the magic
cookie for that length of time, then the cookie is invalidated.
(There is also a group attribute, but this is intended to be used with the Application
Group extension, which is defunct.)
Any client that is trusted can ask the X server to create a new cookie. To create a new
cookie from the command line, use the xauth command generate, which accepts a
displayspec and a protocol as arguments. Optionally, you can include the keywords
trusted or untrusted and the keyword timeout followed by a value in seconds. Here
are some examples that generate tokens for display :2 on blue:
$ xauth generate blue:2 .
Pages:
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289