Comment on Docker or Podman for Jellyfin?
vojel@feddit.de 11 months ago
SELinux should not be an issue if you stick to common directories and use :Z flag after the mount path with docker, afaik podman uses the same mechanism. There’s even a tool for selinux container policies: github.com/containers/udica
Regarding firewall stuff, disable it on your machine and you are fine. Port forwarding in containers is necessary to connect to services, now way around.
Ah and read this: stopdisablingselinux.com
It has a reason why it exists.
farcaller@fstab.sh 11 months ago
How do you know OP doesn’t have a bunch of unsecured services sticking out into their LAN ready to be a target for the next cryptolocking scam?
Slightly sarcastic, but yeah, OP, do not just turn your firewall without understanding pros and cons of doing such. At the very least, see what your server exposes to the network (
ss -tunlp
will give you a good starting point), and see if there’s nothing unexpected in there that might be abused.vojel@feddit.de 11 months ago
I don’t but lots of people stick anyways to a single network with some kind of crappy router and from OPs post I assumed that OP doesn’t really care about security, see SELinux