> | |-Xorg :0 vt7 vt7 -nolisten tcp This means X is started with host-based auth enabled, but without mit-magic-cookie auth enabled. Any client from localhost will be able to connect. No remote client will be able to connect unless explicitly allowed with 'xhost +'