Not a huge deal since X11Forwarding is usually disabled by default.
It is another reason for best practices of just-enough infrastructure -> smaller attack surface: disable unused features and ship server daemons with sane defaults with minimal features enabled.
2 comments
[ 2.0 ms ] story [ 13.0 ms ] threadIt is another reason for best practices of just-enough infrastructure -> smaller attack surface: disable unused features and ship server daemons with sane defaults with minimal features enabled.
Except on Red Hat… https://threatpost.com/openssh-implementations-with-x11forwa...