1·
1 day agoThat doesn’t solve the glaring security issues Jellyfin has. It just changes the computer through which they are accessed
MaggiWuerze
- 0 Posts
- 6 Comments
Joined 1 year ago
Cake day: July 2nd, 2024
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Yeah and that kills Jellyfin as a drop in replacement for Plex. I would’ve deployed it years ago with a subdomain and given it to friends if it was as edily shareable as Plex
Which breaks basically every client, since none of them can deal with basic auth getting in the way
Yeah, and in contrast to the Jellyfins devs, they acknowledged a security risk and fixed it. The chances of Jellyfin actually doing something to improve the security is rather slim, since they prioritize client compatibility
My favourite way of having a secure Jellyfin is using Plex
The general jist is, do not expose Jellyfin to the internet. Neither via a port nor through a reverse proxy. Its simply not build secure enough for that.
Use docker to make the setup easier, then use tailscale or whatever VPN solution to allow users from outside your network to access it.
All of the additional authentication solutions mentioned break client compatibility. Then you could only watch through a browser.
Install docker, deploy Jellyfin to it, test it. They both have good guides on their respective websites.