Comment on Sharing Jellyfin
daniskarma@lemmy.dbzer0.com 2 months agoI don’t think jellyfin vulnerabilities could lead to a zombified machine.
Most Jellyfin issues I known are related to unauthorized API calls of the backend.
Comment on Sharing Jellyfin
daniskarma@lemmy.dbzer0.com 2 months agoI don’t think jellyfin vulnerabilities could lead to a zombified machine.
Most Jellyfin issues I known are related to unauthorized API calls of the backend.
possiblylinux127@lemmy.zip 2 months ago
I think it is a matter of time honestly.
Jellyfin has grown enough in popularity that it is likely a target for a state actor looking to create some minions. Just because there isn’t any known remote code execution vulnerabilities doesn’t mean there couldn’t be one in the future.
Maybe I’m being paranoid but it seems way safer to just not expose Jellyfin.
daniskarma@lemmy.dbzer0.com 2 months ago
Any software can have zero-day exploits for that matter.
possiblylinux127@lemmy.zip 2 months ago
That’s is absolutely true
Avoid exposing things unless you really need to and follow best practices.