Openmoko Bug #1854: Xserver insecurely listens for TCP
Openmoko Public Trac
bugs at docs.openmoko.org
Sun Aug 24 16:29:42 CEST 2008
#1854: Xserver insecurely listens for TCP
-----------------------------+----------------------------------------------
Reporter: RuiSeabra | Owner: openmoko-kernel
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: System Software | Version:
Severity: normal | Keywords: Xserver security haspatch
Blockedby: | Reproducible: always
Blocking: |
-----------------------------+----------------------------------------------
Xserver listens for TCP on port 6000 by default. If you really want to
have that, you can change from a secure default into a less secure
default.
However, the default should not be to listen to anything at all since that
is an attack vector which can be used to crack an OpenMoko.
The solution is simple, just add {{{-nolisten tcp}}} to the Xserver's
flags
--
Ticket URL: <https://docs.openmoko.org/trac/ticket/1854>
docs.openmoko.org <http://docs.openmoko.org/trac/>
openmoko trac
More information about the openmoko-kernel
mailing list