NX Security (was [FreeNX-kNX] Re: got: "cannot create directory `/home/.nx'")

[freenx at mikebell.org]

On Wed, Oct 20, 2004 at 12:40:07AM +0200, Kurt Pfeifle wrote:
> Oh, oh, thee self-styled security experts -- could you please start
> reading sources and documentation first, and comment then,  as your
> second action?

I did not only state the conditions under which what I said was true,
admitting that I did not know, but tried (and failed) to get this
information by asking the list, after the documentation and a brief look
over the source failed me.

I /believe/ that I didn't make any false claims, though I do not claim
to be either a security "expert" or by any means infallible. What I did
state is that IF condition X is true, then vulnerability Y may exist,
with a pretty clear qualification that I was unable to ascertain whether
X was true or not from the available documentation.

If you want people not to make these sorts of claims, simply document
exactly how it works and why these claims are false. Get it on the NX
website, maybe with a big link that says "Security", and you can from
that point on rightly mock anyone who makes a point refuted in said
document, and pass the link on as an antidote to anyone who falls for
their FUD.

Since I had no intention of getting into an antagonistic position with
this conversation, might I inquire precisely how the port forwarding
DOES work now?