Comment on Sharing Jellyfin
daniskarma@lemmy.dbzer0.com 16 hours agoI don’t think jellyfin vulnerabilities could lead to a zombified machine.
Most Jellyfin issues I known are related to unauthorized API calls of the backend.
Comment on Sharing Jellyfin
daniskarma@lemmy.dbzer0.com 16 hours agoI don’t think jellyfin vulnerabilities could lead to a zombified machine.
Most Jellyfin issues I known are related to unauthorized API calls of the backend.
possiblylinux127@lemmy.zip 10 hours ago
I think it is a matter of time honestly.
Jellyfin has grown enough in popularity that it is likely a target for a state actor looking to create some minions. Just because there isn’t any known remote code execution vulnerabilities doesn’t mean there couldn’t be one in the future.
Maybe I’m being paranoid but it seems way safer to just not expose Jellyfin.
daniskarma@lemmy.dbzer0.com 5 hours ago
Any software can have zero-day exploits for that matter.
possiblylinux127@lemmy.zip 3 hours ago
That’s is absolutely true
Avoid exposing things unless you really need to and follow best practices.