X11 forwarding disabled by default.

provos · provos · commit 964b4a12ffda · 2001-02-08T23:49:04.000Z
diff --git a/openssh/security.html b/openssh/security.html
@@ -49,7 +49,8 @@ <h2><font color=#e00000>Security</font><hr></h2>
 <p>
 <li>OpenSSH was not vulnerable to
     <a href="http://www.kb.cert.org/vuls/id/118892">uncontrollable X11 forwarding</a>
-    attacks since the user can de-permit X11 forwarding.
+    attacks because X11-forwarding is disabled by default and the user can
+    de-permit it.
 <p>
 <li>OpenSSH has the SSH 1 protocol defficiency that might make an insertion attack
     difficult but possible.  The CORE-SDI
@@ -82,7 +83,7 @@ <h2><font color=#e00000>Security</font><hr></h2>
 <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenSSH></a>
 <a href=mailto:www@openbsd.org>www@openbsd.org</a>
 <br>
-<small>$OpenBSD: security.html,v 1.9 2001/02/08 23:45:41 provos Exp $</small>
+<small>$OpenBSD: security.html,v 1.10 2001/02/08 23:49:04 provos Exp $</small>
 
 </body>
 </html>
