[mythtv-users] Demise of Mythweb

[James Linder]

> On Feb 4, 2025, at 07:09, Mike Hodson <mystica at gmail.com> wrote:
> 
> 
> 
> On Mon, Feb 3, 2025, 16:04 James Abernathy <jfabernathy at gmail.com> wrote:
> 
> For my house connected via a cable modem I have a Raspberry PI 4 running Pi-Hole to do AD blocking, DNS Server, and Wireguard VPN.  This means that I can use a Wireguard client on my phone, tablet, or laptop when traveling to log into my home network and run mythfrontend, Web App, or anything else.  The only port that is not Stealth is the VPN port that Wireguard owns. I can also use Wireguard VPN to protect my web traffic when connected at a coffee shop.
> 
> A very simple VPN solution that will automatically setup Wireguard for you on all devices is Tailscale.  I currently run this on a fairly large production network for my job and it works amazingly well. 
>   
> If you listen to any Security Podcast like Steve Gibson's Security Now, you'll hear about the risk of password only protection of websites.
> 
> Great info here!  I've been a GRC fan since I started using BBSes/the net online in the late '90s.  I miss the interviews he used to get on tech TV :)

I’m mildly surprized that ssh is not mentioned

I have only a single port forward from my router to the backed (ssh)
The backend SSHD is WithoutPassword ie only public key

Now you are a bad guy who knows ANYTHING that is to be knowed: you cannot login and webbackend is available in all it’s glory, even watching is possible.
(Well if he knew private key, public key of a valid user …)

James