How is QID 95001 - X-Window Sniffing detected?

Document created by kb-author-1 Employee on May 19, 2010Last modified by eschamp on Jul 16, 2010
Version 4Show Document
  • View in full screen mode

Issue:

How is QID 95001 detected - X-Window Sniffing?

 

Solution:

First, the scan engine determines if the X11 service is running.

 

Once this is confirmed, using the xhost command, we can detect whether access control is enabled or disabled.

 

When no arguments are passed to xhost it returns the current status of the system.

 

xhost +: turns off access control (all remote hosts have access to X server)

xhost -: turns on access control

 

 

 

 

Qualys Support KnowledgeBase

http://community.qualys.com/community/kb

 

 

 

ID:  0001.001.613.000

Attachments

    Outcomes