??? If the remote ~/.Xauthority file is compromised, the cookie will not work for
other connection paths to the server.
??? All of the X traffic going through the tunnel is encrypted so it is protected against
snooping.
Therefore, once you have connected to a remote system using SSH with X11 forwarding
turned on, you can start X clients.
It??™s also possible to specify the name of the client directly on the SSH command line.
For example, to run kcalc on blue:
blue$ ssh -X chris@red kcalc
In this case, no interactive remote shell will be started.
As they would say on late-night infomercials: ???But wait??”there??™s more!??? SSH also
has a compression feature, which is enabled with the -C option:
blue$ ssh -X -C chris@red kcalc
Although this is a simple data-stream compression (like gzip), it provides at least as
much benefit as LBX (Section 13.11) in most use cases.
13.13
190 Chapter 13: Remote Access
Use the SSH compression option even if your network connection is
already compressed (for example, when using a modem), because
compression is much more effective when applied before encryption.
13.13 Using Public Keys with SSH
SSH provides a simple way of starting a remote X client with a single command (Section
13.
Pages:
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295