<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On Fri, Nov 29, 2013 at 7:51 AM, Stephen P. Villano <span dir="ltr">&lt;<a href="mailto:stephen.p.villano@gmail.com" target="_blank">stephen.p.villano@gmail.com</a>&gt;</span> wrote:<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

  <div bgcolor="#FFFFFF" text="#000000"><div><div class="h5">

    <br>

    <div>On 11/28/13, 9:55 AM, Matthias Thyroff

      wrote:</div></div></div><blockquote type="cite"><div><div class="h5">

      <div class="gmail_quote">&quot;Stephen P. Villano&quot;

        <a href="mailto:stephen.p.villano@gmail.com" target="_blank">&lt;stephen.p.villano@gmail.com&gt;</a> schrieb:

        <blockquote class="gmail_quote" style="margin:0pt 0pt 0pt 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"> <br>

          <div>On 11/28/13, 7:47 AM, Paul Clark

            wrote:</div><blockquote type="cite"><div dir="ltr"><div class="gmail_extra">

                <div class="gmail_quote">On 27 November 2013 15:03, R.

                  G. Newbury <span dir="ltr">&lt;<a href="mailto:newbury@mandamus.org" target="_blank">newbury@mandamus.org</a>&gt;</span>

                  wrote:<br>

                  <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">On

                    11/27/2013 04:25 AM, Simon Hobson wrote:<br>

                    <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

                      <br>

                      <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

                        <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"> If you then want to

                          charge into that part of the map marked &#39;Here

                          be Dragons&#39;, you can add port forwarding to

                          your router for external access for mythweb,<br>

                        </blockquote>

                      </blockquote>

                    </blockquote>

                    <br>

                    <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

                      But you **MUST** protect MythWeb from bots - eg

                      add passworded access to Apache. If a bot crawls

                      your recorded programs page, there&#39;s a &quot;Delete&quot;

                      link for every recorded program. Similarly,

                      there&#39;s a &quot;Don&#39;t Record&quot; and &quot;Never Record&quot; link

                      against every rule on your Recordings Rules page.

                      Having those crawls is likely to significantly

                      reduce the WAF !<br>

                    </blockquote>

                    <br>

                    That&#39;s one of the Dragons. Well, more like a

                    scorpion hiding in the grass!

                  </blockquote>

                  <div><br>

                  </div>

                  <div>Just an idea (as someone who had this happen to

                    them) but shouldn&#39;t a dev add a directive to mythweb

                    to tell the bots not to crawl it?  Not sure how

                    these things work but there&#39;s a page <a href="http://en.wikipedia.org/wiki/Robots_exclusion_standard" target="_blank">here</a>

                    that seems to explain it. </div>

                </div>

                <br>

              </div>

            </div>

            <br>

            <fieldset></fieldset>

            <br>

          </blockquote>

          The robots.txt file would stop a &quot;law abiding&quot; service like

          Google, it wouldn&#39;t stop non-compliant spiders, malware or

          nefarious individuals.<br>

          <pre><hr></pre></blockquote></div><br>

      Well I do not know what others think about this, but my Apache at

      home is purely private and serves web pages outside home only via

      SSL and password protected.<br>

      <br>

      <br>

      -- <br>

      Diese Nachricht wurde von meinem Mobiltelefon mit Kaiten Mail

      gesendet.

      <br>

      <fieldset></fieldset>

      <br>

      </div></div><pre>_______________________________________________

</pre>

    </blockquote>

    Mine has no exposure to the internet, it&#39;s all private network and

    well away from the DMZ.<br>

    If I do put something onto the DMZ, it&#39;d be a VPN connection only.<br>

    Can&#39;t be too careful!<br>

  </div>

</blockquote></div><br></div><div class="gmail_extra">One other solution which is possibly less effort to set up is ssh port forwarding.  Assuming you have ssh access to your myth box from the internet:</div><div class="gmail_extra">

<br></div><div class="gmail_extra">$ ssh -L 8088:<a href="http://127.0.0.1:80">127.0.0.1:80</a> &lt;your myth box&gt;</div><div class="gmail_extra"><br></div><div class="gmail_extra">Then go to <a href="http://localhost:8088/mythweb">http://localhost:8088/mythweb</a></div>

<div class="gmail_extra"><br></div><div class="gmail_extra">If you don&#39;t put the &quot;mythweb&quot; on the end you&#39;ll be redirected to localhost port 80, which will probably be a non-existant page, just add the :8088 back in.</div>

<div class="gmail_extra"><br></div><div class="gmail_extra">Not as convenient if you regularly access mythweb from the internet, but easy for occasional access.</div><div class="gmail_extra"><br></div></div>