Path: utzoo!utgpu!watmath!watcgl!jvkelley From: jvkelley@watcgl.waterloo.edu (Jeff Kelley) Newsgroups: uw.cgl,uw.mfcf.people Subject: Re: X Window system has no security Message-ID: <11617@watcgl.waterloo.edu> Date: 25 Sep 89 18:36:18 GMT References: <11608@watcgl.waterloo.edu> Reply-To: jvkelley@watcgl.waterloo.edu (Jeff Kelley) Distribution: uw Organization: U. of Waterloo, Ontario Lines: 11 The lack of security is a property of current X server implementations. The X protocol requires clients to send an access control string to the server as they attempt to establish a connection. The MIT R3 server simply ignores the string, and the MIT R3 X library sends a null string. Presumably, though, one could use it to distinguish between 'trusted' clients and 'hostile' clients. But then it would be harder to have a multi-player game of 'xconq', now, wouldn't it? -Jeff