$HOME readonly: /usr/bin/xauth: timeout in locking authority file /home/fooftp/.Xauthority

ssh xforwarding xauth
8,445

There are a couple of options here

  1. Disable ForwardX11 on the server

    The man page for sshd_config shows that you can set X11Forwarding no in the /etc/ssh/sshd_config file. If you do this, don't forget to restart the ssh daemon (service ssh restart works for me).

  2. Create the file /home/fooftp/.Xauthority

    If you create the file /home/fooftp/.Xauthority and make it writeable by the user account, then it can be locked so the error message goes away. This does not disable X11 Forwarding so may not be appropriate for your situation.

Share:
8,445

Related videos on Youtube

guettli
Author by

guettli

http://thomas-guettler.de/ Working out loud: https://github.com/guettli/wol

Updated on September 18, 2022

Comments

  • guettli
    guettli over 1 year

    I get this message after a annoying timeout:

    /usr/bin/xauth:  timeout in locking authority file /home/fooftp/.Xauthority

    For some reasons the $HOME directory is not writeable by the user.

    I want this:

    • leave the $HOME directory read-only even for the user.
    • Keep ForwardX11 yes in ~/.ssh/config for the client.
    • No modifications at client side.
    • No timeout if I connect to the machine. Hint: I don't need ForwardX11 on this account.

    Is there a way to disable ForwardX11 for one account on the server side?

    Other solutions are welcome.

    Please ask if you don't understand something, thank you.

  • guettli
    guettli almost 6 years
    $HOME is readonly, I can't do touch ~/.Xauthority
  • rickfoosusa
    rickfoosusa almost 6 years
    I corrected the answer, thank you. You shouldn't get any errors whether .Xauthority is present or removed.
  • elbarna
    elbarna over 3 years
    I think this configuration is not safe, ForwardX11Trusted yes bypass the xhost command, i have tried with xhost - and with -X accept all clients.
  • rickfoosusa
    rickfoosusa over 3 years
    I think it is OK, since I have a secure connection from login, but I see your point about trusted and set trusted to no. From this: "remember that ForwardX11Trusted doesn't imply ForwardX11. ForwardX11Trusted just means that if you turn on forwarding (whether via config file or command line) then the forwarded connection will be trusted." unix.stackexchange.com/questions/138417/…

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

SSH XForwarding fails - xauth bad display name
X11 forwarding and .Xauthority file
How to troubleshoot failed X11 forwarding with ssh?
XAUTHORITY environment variable set repeatedly on every login
xauth error with ssh X Forwarding
ssh xauth error Mac OS 10.6.3
How do I use PuTTY with X forwarding when opened by WinSCP?
Xauth/X11 ssh forwarding errors with .Xauthority file not writable
xauth not creating .Xauthority file
VirtualBox over X Forwarding