security, cvs, was Re: interface bindings of x-server
Corinna Vinschen
corinna-cygwin@cygwin.com
Wed Nov 19 09:52:00 GMT 2003
On Wed, Nov 19, 2003 at 01:35:20AM -0800, Keith Packard wrote:
>
> Around 10 o'clock on Nov 19, "roland@webde" wrote:
>
> > the only chance to get rid of it, is to use unix domain socket (via
> > -nolisten tcp)
>
> That option should be the default; ssh refuses to listen on a unix
> domain socket, but appears quite happy to connect to a unix domain
> socket.
>
> I don't know of any compelling reason to run X raw over TCP/IP these days;
> it's insecure, and a bandwidth pig.
AF_LOCAL sockets are implemented using AF_INET sockets on Cygwin, using
a binding of 127.0.0.1 plus some overhead for security reasons. So
AF_LOCAL sockets are a few percent slower than AF_INET sockets.
Corinna
--
Corinna Vinschen Please, send mails regarding Cygwin to
Cygwin Developer mailto:cygwin@cygwin.com
Red Hat, Inc.
More information about the Cygwin-xfree
mailing list