Comment on Plex got hacked.
thelittleblackbird@lemmy.world 20 hours agoJellyfinn has a nice record of problems during the authentication and escalating privileges, even the developer team recommends to use it behind a vpn and don’t expose it to internet.
If course, you can use a reverse proxy with and external Auth framework to mitigate it, pair it with fail2ban, geo restrictions and a second factor, but those things are not in the scope of the regular user.
Let’s face reality, plex is not such widespread for being the default option in kali Linux…
dogs0n@sh.itjust.works 8 hours ago
I think the only advice I have seen is to use jellyfin behind a reverse proxy (instead of directly exposing it), because they are hardened.
Where have you seen this official advice for a vpn?
thelittleblackbird@lemmy.world 3 hours ago
Here …jellyfin.org/t-protection-against-everything