From owner-freebsd-questions@freebsd.org Thu Mar 11 02:25:42 2021 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 0AACB5AA927 for ; Thu, 11 Mar 2021 02:25:42 +0000 (UTC) (envelope-from parv.0zero9@gmail.com) Received: from mail-wr1-x435.google.com (mail-wr1-x435.google.com [IPv6:2a00:1450:4864:20::435]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4Dwt8j1sGfz3N8M for ; Thu, 11 Mar 2021 02:25:41 +0000 (UTC) (envelope-from parv.0zero9@gmail.com) Received: by mail-wr1-x435.google.com with SMTP id j2so74355wrx.9 for ; Wed, 10 Mar 2021 18:25:40 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=STQObQXW3vKVCG2t6a/35C85uWXp+y4O8dDOkOiipSM=; b=MUhQCEAkbixtWY8QSeYsODYi02EPpVxwd7A392hjFvzwKBN8SMV71hEW2jwB9FBW7/ T+955ldZ2C8sgKPd3nB5Q3EZib0/UGtOfLhRE85u4li94GG2rjPNNhk+fuuwGq6PxaE3 USg+4eo32Mnqc6cTqxBeqvtnuP0lKGBYEWtQdCqPrGLiRgKjrU7Knl27RHAfBainYLPi A4yH9xh5BknLBY3ZpBV06XEOCvvdGcYw5vPhc2PI6Yi10dq5tnnpz5PZb0dRRKv/Apr2 WZy1OyZWx/r7cpxcagfHe0tHDHhuUq5LCU3KHWttzBEoam4HHW8Wyr9zX13mSZnbr0Aj 328g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=STQObQXW3vKVCG2t6a/35C85uWXp+y4O8dDOkOiipSM=; b=cwEcd239t0SlnBn0wv68yEJjoTd+yIKzPG5TPRXFQ3mBDDYd+xkV9yAwLzEdjw6EcB ++CHZFXWY51Rn0ywYUBbtZJdH31MiJvwi+mXLU27d0ZbxPGO4mo+b7IlbLrwVU3Xpsxx 6mWmFeDoVhgQzUZqTqdfnwg1FDyF6uuTLLzVplvge+MO7Q9/jTX3oWfk6gMdsRB8sj4p ZNoMjSoeHJlaPVrZuNqf4LyoABGuv04U2O33xKldwRYToBdyswFHPvBjEgeOAQ/+aLeI hRd8eNyz/RhGcQBs4AO3u1BsGMY3wMi9HuRT2oflCI1y4WNvw+0x15dlUjLFvp4jsB09 c6Xw== X-Gm-Message-State: AOAM530WxrOE2VDdh6G+a7HyoFaOHn8rMss5EabFILtzAnNsLMe2Dhvb 8cA4DEjhF4wbeoH1MqsDVaYASf5ghDlrPew7102FQBNobOY= X-Google-Smtp-Source: ABdhPJyf1IVvPjtZuePExjX53Bnz70GDoy2/5q/f0nlyBzbTeNg8/sL5h2YmGoFJ3jLNNNvrG3MnIf6ZUF4xTiwWbnk= X-Received: by 2002:a5d:5105:: with SMTP id s5mr6510102wrt.140.1615429539209; Wed, 10 Mar 2021 18:25:39 -0800 (PST) MIME-Version: 1.0 References: In-Reply-To: From: "parv/freebsd" Date: Wed, 10 Mar 2021 16:24:08 -1000 Message-ID: Subject: Switched to VNC, after testing ForwardX11Timeout - Re: Remote (CentOS 8) X11 clients stop spawning on local (FreeBSD 12) X11 server over ssh after some time To: freebsd-questions@freebsd.org X-Rspamd-Queue-Id: 4Dwt8j1sGfz3N8M X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=MUhQCEAk; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of parv0zero9@gmail.com designates 2a00:1450:4864:20::435 as permitted sender) smtp.mailfrom=parv0zero9@gmail.com X-Spamd-Result: default: False [-2.37 / 15.00]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36]; TO_DN_NONE(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; RBL_DBL_DONT_QUERY_IPS(0.00)[2a00:1450:4864:20::435:from]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; TAGGED_FROM(0.00)[freebsd]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; SPAMHAUS_ZRD(0.00)[2a00:1450:4864:20::435:from:127.0.2.255]; NEURAL_SPAM_SHORT(0.63)[0.633]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::435:from]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[]; MAILMAN_DEST(0.00)[freebsd-questions] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.34 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Mar 2021 02:25:42 -0000 On Sun, Feb 28, 2021 at 11:19 PM parv/freebsd wrote: > On Sun, Feb 28, 2021 at 8:18 PM parv/freebsd wrote: > > I had started ssh -X connection 2+ days ago in X11 on FreeBSD 12-STABLE to >> CentOS 8. >> When I tried to run Firefox (on CentOS), it did not start & blurted ... >> >> Unable to init server: Broadway display type is not supported: >> localhost:13.0 >> Error: cannot open display: localhost:13.0 >> > ... > > So, "ssh -vv -X" shows "Rejected X11 connection after ForwardX11Timeout > expired", > I do not see that option in /etc/ssh/ on CentOS or FreeBSD. Hold on ... > > This ... > > > https://security.stackexchange.com/questions/147293/openssh-is-setting-a-long-forwardx11timeout-better-than-forwardx11trusted > > ... points to ... > > https://github.com/openssh/openssh-portable/commit/1ab6a51 > > ... which makes "ForwardX11Timeout" to be ssh client option. On to testing > ... > The X11 connection seemed to have stayed after setting the option in ~/.ssh/config ... Host * ... ForwardX11Timeout 345600 In any case, I am now a SSH-VNC tunnel convert (TigerVNC installed on both ends) ... HowTo: Tunneling VNC Connections over SSH, https://www.cyberciti.biz/tips/tunneling-vnc-connections-over-ssh-howto.html ... starting & setting up VNC server on CentOS side was somewhat convoluted ... novncserver on CentOS8 #1161, comment by astronomerdave, Dec 15, 2020, https://github.com/TigerVNC/tigervnc/issues/1161#issuecomment-745569986 The interaction (xterm almost all the time) is certainly faster now over 100 Mb/s connection compared to plain X11 connection. In the latter case -- still subject to time out -- using XLFD (X Logical Font Description) font instead of TTF[0] helped some. - parv 0- If true type font has been enabled locally, then xterm can be started without ... xterm -xrm 'XTerm.VT100.renderFont:False' \ -fn '-misc-liberation mono-bold-r-normal--24-0-0-0-m-0-iso10646-1' ... and/or set .renderFont & .font[1-6]? resources in in ~/.Xresources.