How can I restrict who can use X11 forwarding?

KFC123 · 06-25-2009, 11:27 AM

I am setting up a ssh server, but I only want some of the user using X11 forwarding, what should I do?

centosboy · 06-26-2009, 03:05 AM

Set it in an ssh key. You can also set which commands can be run inside this key.
Or you can set it in a local ssh config file (~user/.ssh/config)

But then users can bypass this using their own xforwarders...so you may have to block X forward ports on the server from certain users/ips or just allow it from certain hosts

Pls gimme thumbs up if you feel i have helped