Comment on Self hosting with subdomains
Appoxo@lemmy.dbzer0.com 3 days agoDesigned meaning in that case intended to be exposed.
More of an internal thing.
VPNs on the other hand are designed to be exposed. Same with some ssh servers or reverse proxies like traefik, nginx etc.
Magnum@infosec.pub 3 days ago
So you mean the JellyFin ports should not be directlly exposed, but self hosting and exposing nginx to forward the traffic locally to jellyfin is fine?
Appoxo@lemmy.dbzer0.com 3 days ago
Better rather than worse, yes.
Just need to be aware if what you expose and how and where.
Magnum@infosec.pub 2 days ago
So its also not designed to be exposed via nginx?
Appoxo@lemmy.dbzer0.com 2 days ago
Please stop nitpicking.
It’s as insecure as every other software exposed to the internet.
It’s just that some softwares (like Jellyfin) is more prone to be a risk than others (like nginx).
Juat be aware of what you do.