[mythtv-users] Securing Mythweb

Harry Devine lifter89 at comcast.net
Tue Apr 1 00:21:24 UTC 2008 

Brad DerManouelian wrote:
> Harry Devine wrote:
>   
>> So, basically, what I'm looking for is how do I use the htdigest utility 
>> to secure Mythweb?  And what do I need to do in mythweb.conf for this?  
>> Is .htaccess still involved somehow?  Currently, I can get in locally, 
>> but from outside my network, my /var/log/httpd/error_log shows (and I 
>> KNOW I typed the password in correctly. and I'm not showing what the 
>> username is for security reasons ;-) ):
>> [Fri Mar 28 15:02:21 2008] [error] [client 155.178.180.5] user 
>> <user_hidden_for_security>: authentication failure for "/mythweb": 
>> Password Mismatch
>>     
>
> Get rid of your .htaccess files.
> Edit /etc/httpd/conf.d/mythweb.conf like this:
> Uncomment the htdigest section:
>          AuthType           Digest
>          AuthName           "MythTV"
>          AuthUserFile       /var/www/htdigest
>          Require            valid-user
>          BrowserMatch       "MSIE"     AuthDigestEnableQueryStringHack=On
>          Order              allow,deny
>          Satisfy            any
>
>
> Then use htdigest (need to be root to do this or sudo the command) to 
> create your digest file:
> htdigest -c /var/www/htdigest MythTV username
>
> Then it will ask for your password.
>
> Restart apache and it should work.
> _______________________________________________
> mythtv-users mailing list
> mythtv-users at mythtv.org
> http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users
>
>   
Well, it looks like I spoke too soon.  This, in fact, isn't working.  
When I try to connect to my Mythweb internally from home, I get in 
(since I allow my internal IP segments in without prompting for a 
password).  When I try connecting internally using my DynDNS.org 
account, I get prompted for the username/password, then it displays my 
Mythweb pages.  However, it changes in the address bar to 
http://hjdmyth/mythweb, which is my INTERNAL hostname.  When I try 
connecting from outside (i.e. from my office at work) using my 
DynDNS.org account, I get prompted for a password, which I enter 
correctly, and get the standard "page cannot be displayed" page.  I was 
SSH'd into my box from work when I tried this, and tried to monitor the 
error_log and access_log, I didn't see anything unusual.  The error_log 
showed no errors at all, and access_log showed the GET for /mythweb, but 
nothing else.

Any ideas on where I should go from here?

Thanks,
Harry

More information about the mythtv-users mailing list