X11 forwarding does not work if su to another user

rhel x11 putty xming
5,628

Solution 1

The below steps should fix the issue for you.

Say it's working for user1 and you want to use it for user2

For user1:

$ xauth list $DISPLAY
<output1>
$ echo $DISPLAY
<outoput2>

Switch to other user , i.e user2

$ xauth add <output1> 
$ export DISPLAY=<output2>

Try:

$ xclock

Solution 2

That's because the the X11 display connection belongs to the user with which you log in via SSH. X11Forwarding mechanism does not allow anyone else to use the display.

Fortunately, there's a workaround. After using su and become the othe user, issue this command:

xauth add $(xauth -f ~username/.Xauthority list | tail -1)

where ~username is your original user, i.e. the user with which you connected to the server.

Obviously, this works if your new user has enough privileges to read ~username/.Xauthority (i.e. if you su to root then there are no problems, if to another user it might not work and you need to check/modify permissions).

Share:
5,628
tickermcse76
Author by

tickermcse76

Updated on September 18, 2022

Comments

  • tickermcse76
    tickermcse76 over 1 year

    I have a Red Hat 7.3 server running XVnc. On a Windows 10 desktop I have Putty and Xming installed. Putty is configured for X11 forwarding. When I SSH in as my standard/non-privileged user and launch an X application, it displays on my Windows 10 desktop without issue.

    Now within same session, if I su to a more privileged account and try to run an X application, it fails with "error: can't open display".

    In my standard user session if I echo $DISPLAY it is automatically set for me as "IP_ADDRESS:10.0". Under my su session, $DISPLAY is null. I tried exporting the DISPLAY variable to the same value but it now a different error appears: "PuTTY X11 proxy: Unsupported authorization protocol Error: Can't open display:server_IP:10.0".

    How can I configure the X11 forwarding to work under the context of the other user?

  • tickermcse76
    tickermcse76 over 5 years
    Thanks for the explanation - had success with the suggested workaround.
  • Vladimir T
    Vladimir T over 2 years
    Thx! If you have no .Xauthority file for the target user and you are find with user1 security you can simply copy the auth file (for me it was from user1 to root): cp /home/user1/.Xauthority /root/

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

PuTTY X11 forwarding can't forward Google Chrome
X11 forwarding not working from putty and XMing to centos 6.4
Forward X11 failed: Network error: Connection refused
How can I run an OpenGL application installed on a linux machine from my windows machine?
Can I start my main desktop graphical session remotely?
Accessing Linux server from Windows machine in graphical mode via SSH
Run a GUI application in background and reconnect later
How to open a PDF file using PuTTY as a terminal?
Xming does not show an xclock window
On Mac, mimic Windows (PuTTY and Xming) with XQuartz to connect to Linux server and display java GUIs