https://community.hpe.com/t5/operating-system-hp-ux/secure-connection-with-ssh/m-p/3427387#M743913 Hello,<BR /><BR />I would like to know how I can force connection with SSH to not use Reflexion X.<BR />I want to be able to open Xsession from ssh session also.<BR /><BR />I want to forbidden root connection. I created /etc/securetty file but connection with Reflexion is still possible.<BR /><BR />Somebody knows methods to implement secure connection in graphical environnment.<BR /><BR />Thanks<BR />Laurent<BR /><BR /> Mon, 22 Nov 2004 08:01:13 GMT MR VILLOT MR MONTAGNE 2004-11-22T08:01:13Z https://community.hpe.com/t5/operating-system-hp-ux/secure-connection-with-ssh/m-p/3427387#M743913 Hello,<BR /><BR />I would like to know how I can force connection with SSH to not use Reflexion X.<BR />I want to be able to open Xsession from ssh session also.<BR /><BR />I want to forbidden root connection. I created /etc/securetty file but connection with Reflexion is still possible.<BR /><BR />Somebody knows methods to implement secure connection in graphical environnment.<BR /><BR />Thanks<BR />Laurent<BR /><BR /> Mon, 22 Nov 2004 08:01:13 GMT https://community.hpe.com/t5/operating-system-hp-ux/secure-connection-with-ssh/m-p/3427387#M743913 MR VILLOT MR MONTAGNE 2004-11-22T08:01:13Z https://community.hpe.com/t5/operating-system-hp-ux/secure-connection-with-ssh/m-p/3427388#M743914 In your ssh_config:<BR /><BR />ForwardX11 no<BR /><BR /> Mon, 22 Nov 2004 08:23:21 GMT https://community.hpe.com/t5/operating-system-hp-ux/secure-connection-with-ssh/m-p/3427388#M743914 Ivajlo Yanakiev 2004-11-22T08:23:21Z https://community.hpe.com/t5/operating-system-hp-ux/secure-connection-with-ssh/m-p/3427389#M743915 Hi<BR /><BR />Check both the files<BR />ssh_config<BR />sshd_config<BR /><BR />ssh_config check for <BR /># ForwardX11 no<BR />sshd_config check for<BR />#X11Forwarding yes<BR />#X11DisplayOffset 10<BR />#X11UseLocalhost no<BR /><BR />Rgds<BR /><BR />HGN Mon, 22 Nov 2004 08:30:02 GMT https://community.hpe.com/t5/operating-system-hp-ux/secure-connection-with-ssh/m-p/3427389#M743915 HGN 2004-11-22T08:30:02Z https://community.hpe.com/t5/operating-system-hp-ux/secure-connection-with-ssh/m-p/3427390#M743916 also for root access :<BR />add this line<BR />PermitRootLogin no Mon, 22 Nov 2004 08:32:28 GMT https://community.hpe.com/t5/operating-system-hp-ux/secure-connection-with-ssh/m-p/3427390#M743916 Ivajlo Yanakiev 2004-11-22T08:32:28Z https://community.hpe.com/t5/operating-system-hp-ux/secure-connection-with-ssh/m-p/3427391#M743917 HI Laurent,<BR /><BR />Try this link from itrc,<BR /><BR /><A href="http://www2.itrc.hp.com/service/cki/docDisplay.do?docLocale=en_US&amp;docId=200000062906659" target="_blank">http://www2.itrc.hp.com/service/cki/docDisplay.do?docLocale=en_US&amp;docId=200000062906659</A><BR /><BR />Check option 3 &amp; 4. This shows how you can restrict access to CDE for specific user. It allow root, but you can block that.<BR /><BR /><A href="http://www2.itrc.hp.com/service/cki/docDisplay.do?docLocale=en_US&amp;docId=200000062906659" target="_blank">http://www2.itrc.hp.com/service/cki/docDisplay.do?docLocale=en_US&amp;docId=200000062906659</A><BR /><BR />the itrc doc id is CDEKBRC00006846<BR /><BR />Do remember that if you are not running Reflection X on your PC. Your ssh connection would not have a X server to connect to.<BR /><BR />Normally the way i do this is connectt through Reflection X / Exceed to a local workstation and then do ssh from there to my hp server, export the display to my local workstation and i can run x apps from my hp server.<BR /><BR />Hope this helps.<BR /><BR />Regds<BR /> Mon, 22 Nov 2004 10:19:18 GMT https://community.hpe.com/t5/operating-system-hp-ux/secure-connection-with-ssh/m-p/3427391#M743917 Sanjay_6 2004-11-22T10:19:18Z