Maybe I'm just being dense, but does this setting of the display
variable to point back to a display located at your *IP address*
actually send the x-session data over the encrypted link, or will it
open up a sniffable/non-encrypted channel separate from the SSH tunnel? 
If the former, how?  (small words would be nice *giggle*)

"Sonja Michelle L. Thomas" wrote:
> 
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> Sure SSH is a choice!!
> 
> Though it may not be listed in the x-session setup boxes. But that's
> when you think outside of the box!!! I do't set up an X-session using
> Exceeds session wizard. Instead I just start the Exceed Server, then
> ssh into my box using putty, then I call the following script (wich I
> threw together):
> 
> ______________________________________________________________________
> _____
> #!/bin/sh
> #
> #
> 
> export DISPLAY=192.168.0.3:0.0
> 
> icewm &