XServers
CONFIGURING WINDOWS XSERVERS: Exceed, XWin32 and XManager
Note to Admins: Go to Secure site for instructions on how to
test security of a running XServer.
Exceed
1. Configure Exceed as follows:
Start Exceed
Right click on Exceed icon located on toolbar
Select -> tools -> Configuration -> Security
Toggle: enabled (no host access)
Click OK
This will restart Exceed
2. Download and install TeraTerm Pro and TTSSH
In depth instructions are available on our
website.
http://www.cs.toronto.edu/cslab/ttssh.html
3. Start up TTSSH.
Cancel out of login Window
Click on Setup ->SSH Forwarding -> toggle "Display Remote X
applications on local X server"
Click OK
Click File ->New Connection ->Toggle SSH
Click OK
Supply login credentials
Click OK
4. In the TTSSH window, type:
xterm &
6. Select Accept in the Exceed warning window.
SSH + Win32 tunneling instructions using Putty
1. Download and install PuTTY from
http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html
2. Install Xwin-32, making sure that both of the following options:
Access Control
Xauth
are toggled (under security options).
This is very important because it will prevent intruders
from attempting to connect to your Xwin-32 program,
which is an XServer. It will also stop us from chasing
you down regarding security issues.
3. Start up XWin32, but don't initiate any sessions. In other
words, just make sure that the XWin32 icon is displayed.
4. Start up PuTTY
In the pane to the left select the following options:
- Connection -> SSH -> Tunnels.
* Click "Enable X11 Forwarding".
- Session.
* Click on Protocol: SSH.
* Hostname (or IP address). Enter hostname.
* Saved sessions. Enter a mnemonic. Click Save.
* Select saved session name. Click Load. Click Open.
5, In the PuTTY window, type:
xterm &
6. Select Accept in the XWin-32 warning window
(Activated due to the XWin-32 security settings set
in step 2. Again, it is vital that these are set in
order to protect your machine from intruders)
SSH + Win32 tunneling instructions using TeraTerm.
1. Download and install TeraTerm Pro and TTSSH
In depth instructions are available on our
website.
http://www.cs.toronto.edu/cslab/ttssh.html
2. Install Xwin-32, making sure that both Access Control
and Xauth are toggled (under security options).
This is very important because it will prevent intruders
from attempting to connect to your Xwin-32 program,
which is an XServer. It will also stop us from chasing
you down regarding security issues.
3. Start up XWin32, but don't initiate any sessions. In other
words, just make sure that the XWin32 icon is displayed.
4. Start up TTSSH.
Cancel out of login Window
Click on Setup ->SSH Forwarding -> toggle "Display Remote X
applications on local X server"
Click OK
Click on File ->New Connection ->Toggle SSH
Click OK
Supply login credentials
Click OK
5, In the TTSSH window, type:
xterm &
6. Select Accept in the XWin-32 warning window
(Activated due to the XWin-32 security settings set
in step 2. Again, it is vital that these are set in
order to protect your machine from intruders)
Securing XManager
Under Xconfig:
a.) Under the XDM tab
toggle: Do not Use XDM(passive)
b.) Under the security tab:
toggle: Enable Access Control
toggle: Show Message for Unauthorized Connect
***Do not enter any host names under: Trusted Hosts ***
(We want to stop others from connecting to your machine
while your XServer is running)
Start up Xstart
a.) Supply the following fields:
Name: test
Host: cs.toronto.edu
Protocol: SSH
Username:
Password:
Execution Command: /local/X11/bin/xterm -ls -display $DISPLAY
b.) Click Run
c.) Accept Connection request from: 127.0.0.1
d.) An xterm window should now pop up for you.
e.) If you need more xterms simply type: xterm & in the currently
running xterm window.
The idea here being that we are tunneling your X Sessions through SSH.
We enable Access Controls to prevent unauthorized connections from
other machines to the XServer running on your laptop. This is a very
serious security issue.