Comment on Sharing Jellyfin
possiblylinux127@lemmy.zip 3 weeks agoFine is a relative term
You probably are fine but the company who is getting attacked by your compromised machine isn’t
Comment on Sharing Jellyfin
possiblylinux127@lemmy.zip 3 weeks agoFine is a relative term
You probably are fine but the company who is getting attacked by your compromised machine isn’t
daniskarma@lemmy.dbzer0.com 3 weeks ago
I don’t think jellyfin vulnerabilities could lead to a zombified machine.
Most Jellyfin issues I known are related to unauthorized API calls of the backend.
possiblylinux127@lemmy.zip 3 weeks ago
I think it is a matter of time honestly.
Jellyfin has grown enough in popularity that it is likely a target for a state actor looking to create some minions. Just because there isn’t any known remote code execution vulnerabilities doesn’t mean there couldn’t be one in the future.
Maybe I’m being paranoid but it seems way safer to just not expose Jellyfin.
daniskarma@lemmy.dbzer0.com 3 weeks ago
Any software can have zero-day exploits for that matter.
possiblylinux127@lemmy.zip 2 weeks ago
That’s is absolutely true
Avoid exposing things unless you really need to and follow best practices.