Comment on What actual damage do you secure your servers against? Whats the attack vector?
placebo@lemmy.zip 1 week ago
Do you actually keep sensitive data on your self hosted systems?
People self-host photos, documents, code, passwords, chats, and other sensitive stuff. Even Jellyfin in your example can get you into legal troubles if your pirated content suddenly becomes public.
What am I missing?
That it’s 2026 and our lives are heavily digitalized. I’d understand this question on 2000 where you’d probably host a few html files and a counter-strike server, but come on.
lambdabeta@lemmy.ca 2 days ago
Fair. I guess what really prompted this question was a chat with a “normie” relative who was self-hosting jellyfin on their main computer, no security (username: user, password: pass, SSL: disabled). I had to explain all the issues (even no fail2ban on their server with an exposed port 22). They thought I was paranoid. But even my suggestions weren’t as extreme as many people put.