Do not expose Jellyfin. It has unauthenticated endpoints that will be exploited by bots
Comment on Round Two: Can I manage to set up Jellyfin correctly this time?
TarantulaFudge@startrek.website 1 week ago
It’s perfectly fine to host jellyfin online. Use a proxy server to enable TLS and do not use default ports 80/443. Use letsencrypt for free certificates. No need for VPN to access here either. Do not expose any other ports such as SSH on default ports. Lock down your jellyfin server and any other related services behind a VPN service and block access to Internet through other interfaces (except for port forwards on your ISP for jelly). Go high on port ranges since they typically aren’t scanned or blocked.
possiblylinux127@lemmy.zip 1 week ago
dogs0n@sh.itjust.works 1 week ago
In my opinion, you’d be fine using default ports. Guess there’s no harm in using other ports though, other than the pain of having the remember which port to use if you ever forget when adding a new device, etc.