Reply to thread

Message

<blockquote data-quote="joz" data-source="post: 403185" data-attributes="member: 70244">I had a little talk with my colleague and a friend of a friend who runs his own webhosting company.Sorry guys but now I'm even more convinced you guys are talking paranoia. Yes, an inexperienced user should not be programming this and setting this up, because most likely he will leave gaping holes in his security.However the risks are totally acceptable. Even basic authenticication is good enough, no need to move to MD5 or SHA1 but maybe I still will do that to have the login a little nicer and incorporate the bruteforce attack blocker (the 3 times and then timeout idea).They both agreed that the infiltration of the LAN will most likely come from a different source then the webserver, such as surfing the internet, running malicious downloads etc.Little progress update;- IE 6 and newer 100% compatible- DU Meter integration- MP plugins section's done, starting the general settings bit- Redesigned free space progressbar thingies to have rounded borders- Added suckerfish dropdown for MediaPortal submenu- Refactored JS navigation. Saved 50 lines, totalling now on 100. This might seem weird to some of you but I decided to handle navigation thru JS. This saves a couple requests. I'm trying to keep it light weight- Refresh iFrame functionality added- Working on EventGhost webserver integration. Just for fun; possible to send remote messagecalls thru the web <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite1" alt=":)" title="Smile&nbsp; &nbsp; :)" loading="lazy" data-shortname=":)" /></blockquote>

[QUOTE="joz, post: 403185, member: 70244"] I had a little talk with my colleague and a friend of a friend who runs his own webhosting company. Sorry guys but now I'm even more convinced you guys are talking paranoia. Yes, an inexperienced user should not be programming this and setting this up, because most likely he will leave gaping holes in his security. However the risks are totally acceptable. Even basic authenticication is good enough, no need to move to MD5 or SHA1 but maybe I still will do that to have the login a little nicer and incorporate the bruteforce attack blocker (the 3 times and then timeout idea). They both agreed that the infiltration of the LAN will most likely come from a different source then the webserver, such as surfing the internet, running malicious downloads etc. Little progress update; - IE 6 and newer 100% compatible - DU Meter integration - MP plugins section's done, starting the general settings bit - Redesigned free space progressbar thingies to have rounded borders - Added suckerfish dropdown for MediaPortal submenu - Refactored JS navigation. Saved 50 lines, totalling now on 100. This might seem weird to some of you but I decided to handle navigation thru JS. This saves a couple requests. I'm trying to keep it light weight - Refresh iFrame functionality added - Working on EventGhost webserver integration. Just for fun; possible to send remote messagecalls thru the web :) [/QUOTE]

Verification