Comment on Self hosting with subdomains
Appoxo@lemmy.dbzer0.com 4 weeks agoDesigned meaning in that case intended to be exposed.
More of an internal thing.
VPNs on the other hand are designed to be exposed. Same with some ssh servers or reverse proxies like traefik, nginx etc.
Magnum@infosec.pub 4 weeks ago
So you mean the JellyFin ports should not be directlly exposed, but self hosting and exposing nginx to forward the traffic locally to jellyfin is fine?
Appoxo@lemmy.dbzer0.com 4 weeks ago
Better rather than worse, yes.
Just need to be aware if what you expose and how and where.
Magnum@infosec.pub 4 weeks ago
So its also not designed to be exposed via nginx?
Appoxo@lemmy.dbzer0.com 4 weeks ago
Please stop nitpicking.
It’s as insecure as every other software exposed to the internet.
It’s just that some softwares (like Jellyfin) is more prone to be a risk than others (like nginx).
Juat be aware of what you do.