Back to article
Disable external X11 for greater security
Turn off this often overlooked service on port 6000
October 24, 1999
startx -- -nolisten tcp xhosts +local:
If you never want to run X programs on a remote machine to display on your local machine, then you may as well shut off this non-essential service
The xhosts line means "trust all clients who are on local host". This is fine for a workstation with only one user, like a typical home machine.