I have been trying secure my mythweb install without success. I have never used htdigest before, but have been attempting it for mythweb. I got it to the point where it asked me for a password, but doesn't recognize what I type in? I am not sure if I have setup mythweb.conf right. It doesn't seem like there is a good tutorial for this yet. I use dyndns to resolve my IP. My OS is Fedora 10. Any one have this working? I want to be able to securely access this from outside my network. Is there a way to add form-based authentication to mythweb? I would really like to use ssl with a form as I think this would be most secure. Is there an add-on for this? What do you all think?

Form-based authentication isn't going to be anything like as secure as SSH. Why not run your whole frontend remotely?

I use reverse SSH tunnels to have my remote Myth frontend interact with the home backend. Basically the HTPC (backend server listening only on localhost) runs SSH. On the remote machine I set up reverse SSH tunnels for ports 3306, 6543, and 6544. This means SSH tunnels extend from the HTPC to my remote machine, serving up those ports as if they were local on the remote machine, all through 22 and highly secure. On the remote machine when I run mythfrontend, it accesses those ports as if they were local, because SSH reaches into its own bellybutton and pulls out the remote service. The only service listening to the outside is SSH.

Works beautifully for any service you want to extend remotely, and overhead is very low on today's machines.

I never like to learn how to do these things second-hand, so search on "reverse SSH tunnel" and sleeper. I can advise if you have difficulty.

Here's a little howto for setting up mythweb with ssl --> http://folk.uio.no/oeysteio/mythplugins-web.html