Comment on Sharing Jellyfin
possiblylinux127@lemmy.zip 1 month agoFine is a relative term
You probably are fine but the company who is getting attacked by your compromised machine isn’t
Comment on Sharing Jellyfin
possiblylinux127@lemmy.zip 1 month agoFine is a relative term
You probably are fine but the company who is getting attacked by your compromised machine isn’t
daniskarma@lemmy.dbzer0.com 1 month ago
I don’t think jellyfin vulnerabilities could lead to a zombified machine.
Most Jellyfin issues I known are related to unauthorized API calls of the backend.
possiblylinux127@lemmy.zip 1 month ago
I think it is a matter of time honestly.
Jellyfin has grown enough in popularity that it is likely a target for a state actor looking to create some minions. Just because there isn’t any known remote code execution vulnerabilities doesn’t mean there couldn’t be one in the future.
Maybe I’m being paranoid but it seems way safer to just not expose Jellyfin.
daniskarma@lemmy.dbzer0.com 1 month ago
Any software can have zero-day exploits for that matter.
possiblylinux127@lemmy.zip 1 month ago
That’s is absolutely true
Avoid exposing things unless you really need to and follow best practices.