ssh X11 forwarding w/root problem

rogue · Posted: Wed Sep 10, 2003 7:14 pm Post subject: ssh X11 forwarding w/root problem

I have 2 gentoo boxes (grendel and hrothgar) and I want to be able to use X apps from one box on the other. I already have this working fine for the most part. I can ssh to hrothgar from grendel as a user and it will forward the X connection fine. The problem comes, however, if on hrothgar I then "su -" and switch to root. As root, I can no longer run any X apps and I get the error:

sschlueter · Posted: Wed Sep 10, 2003 9:24 pm Post subject:

You can either log in as root directly, or if you don't want to be able to do this, you can log in as a user via ssh -X <user>@<server> and then ssh -X root@localhost. So root must be able lo log in from localhost but not from other hosts. If you like this nested-ssh-solution, you have to set up your sshd like this:

in /etc/ssh/sshd_config

rogue · Posted: Thu Sep 11, 2003 1:07 am Post subject:

thanks.

pain in the ass that i can't just su from an existing ssh session, but i guess i don't need to be root often enough on that box so the extra hassle of opening another ssh session isn't too much of a big deal.
_________________
(rob)

christsong84 · Posted: Thu Sep 11, 2003 5:56 am Post subject:

rogue · Posted: Thu Sep 11, 2003 6:46 am Post subject:

m4chine · Posted: Mon Oct 20, 2003 12:46 am Post subject:

I get the same error. I have been shelling into my server for a while, and running xmms through xforwarding on my laptop so i get display on it instead. Something must have changed and now i cannt xforward.

m4chine · Posted: Mon Oct 20, 2003 1:12 am Post subject:

Solved* the problem was that i wasnt forcefully useing ssh2 protocol on my client. My server was only allowing ssh2 due to security reasons, and my laptop was trying to use ssh1. Change whatever Protocol is set to in /etc/ssh/ssh_config to "Protocol 2". Again, this is on the client side.
_________________
never trust a man who can count to 1023 on his fingers.

-m4chine

Shiner_Man · Apprentice Joined: 09 Mar 2004 Posts: 180

I'm having the same issue here:

Regor · Posted: Sun May 16, 2004 9:49 am Post subject:

Give something like this a shot. This is taken from the /root/.bashrc of the machine I ssh into.

orionrobots · Posted: Wed Jul 14, 2004 10:46 am Post subject:

I wander if that script could be done in such a way that when a user(with the correct wheel authority) su'd in as root, the XUATHORITY was passed along with DISPLAY(which is already passed through).
Is there an arg to the su command to do this?
I know that the curent environment is passed through, but if you specify '-' then the root environment will replace it.
For now - I am happy to use Regors script - it works well enough..
_________________
Danny Staple, curator of http://orionrobots.co.uk
Adopt an unanswered post initiative https://forums.gentoo.org/search.php?search_id=unanswered

dju` · Retired Dev Joined: 11 Feb 2003 Posts: 370

i would also be interested about a way to automatically set XAUTHORITY right.

Regor · Posted: Fri Nov 12, 2004 10:37 pm Post subject:

Not too long ago, I learned about x11-misc/sux, which - despite its name - most definately does not suck! It's an su wrapper that takes care of all the X authentication transfer for you. Check it out!
_________________
Sometimes the appropriate response to reality is to go insane.
-Philip K. Dick, Valis

abeowitz · n00b Joined: 17 Mar 2003 Posts: 20 Location: Seattle

step back on your PAM version. I emerged pam-0.77-r2.ebuild and did the etc-update and things work normally again.

L.U. · Posted: Sun Nov 14, 2004 4:45 am Post subject:

Hello, I know next to nothing about this particular topic, and may just be wasting space here however; I saw this topic earlier today and I wandered if it might not be related.
https://forums.gentoo.org/viewtopic.php?t=249744
_________________
In linux, getting your computer to do what you want is a science. In windows, it's an art form...