[mythtv-users] Mythweb via SSL on Mythbuntu 14.04, how?
James Linder
jam at tigger.ws
Thu Oct 27 12:36:40 UTC 2016
> On 27 Oct. 2016, at 8:00 pm, mythtv-users-request at mythtv.org wrote:
>
>>> I chose to use an SSH tunnel to my Myth box hosting MythWeb and it works
>>> just fine. I can setup the tunnel when I want it and since I use public
>>> key encryption I'm reasonably confident in the security. No need now to
>>> mess with SSL or Web server authentication, etc. As I already had
>>> remote SSH access into the box, this capability was always there.
>>>
>>> - Nate
>>>
>>> I trust that you are using a non-standard port for SSH? Port 22 gets
>> absolutely hammered here...
Alternative ports are without doubt a good-thing but are only a very gentle deterent (meaning one good use of nmap thwarts this tatic)
PermitRootLogin without-password is a much stronger protection.
meaning one user you are pretty certain exists is root
and even if you are correct with the passwd you get a quiet rejection indistinguishable from a wrong attempt.
James
More information about the mythtv-users
mailing list