Results 1 to 2 of 2
No answers here but I've struggled with XDMCP on recent Ubuntus. It worked very nicely in 8.04. I wonder what happened? Did Debian decide to discard XDMCP because of security ...
- 12-14-2011 #1Just Joined!
- Join Date
- Dec 2011
- Posts
- 1
Did Debian discard XDMCP because of security risks?
No answers here but I've struggled with XDMCP on recent Ubuntus. It worked very nicely in 8.04. I wonder what happened? Did Debian decide to discard XDMCP because of security risks? There seems to be no replacement with similar capabilities.
- 12-14-2011 #2Linux Guru
- Join Date
- Jul 2008
- Location
- Pecos, Texas
- Posts
- 2,946
Though I don't use itThere seems to be no replacement with similar capabilities.
https://help.ubuntu.com/community/FreeNX
https://wiki.ubuntu.com/xdmcpWarnings
XDMCP is inherently insecure as it does not encrypt your traffic. XDMCP is analogous to telnet, and therefore they share the same security issues. Over wireless, anyone can listen to your traffic and easily record your keystrokes. They can likely read what is being display on your screen. Over a wired LAN, this is more difficult but still possible. Over both, it is still somewhat easy for someone hijack your session and assume control of the sever. Therefore, only use XDMCP on a wired network that you you trust. Also, consider using alternatives that feature security (and often compression) such as NX.Linux Registered User # 475019
Lead,Follow, or get the heck out of the way
AntiX,Puppy,Ubuntu,Windows 7=(cuz of scooters)
Open CourseWare for Linux Geeks
Reply With Quote 
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts