Ptsf
@Ptsf@lemmy.world
- Comment on Jellyfin over the internet 3 days ago:
It’s difficult to say exactly what all a reverse proxy adds to the security conversation for a handful of reasons, so I won’t touch on that, but the realistic risk of exposing your jellyfin instance to the internet is about the same as handing your jellyfin api over to every stranger globally without giving them your user account or password and letting them do whatever they’d like for as long as they’d like. This means any undiscovered or unintentional vulnerability in the api implementation could easily allow for security bypass or full rce (remote code execution, real examples of this can be found by looking at the history of WordPress), but by siloing it behind a vpn you’re far far far more secure because the internet at large cannot access the apis even if there is a known vulnerability. I’m not saying exposing jellyfin to the raw web is so risky it shouldn’t be done, but don’t buy into the misconception that it’s even nearly as secure as running a vpn. They’re entirely different classes of security posture and it should be acknowledged that if you don’t have actual use for internet level access to jellyfin (external users, etc, etc) a vpn like tailscale or zero tier is 100% best practice.
- Comment on Jellyfin over the internet 3 days ago:
Honestly you can usually just static ip the reverse proxy and open up a 1:1 port mapping directly to that box for 80/443. Generally not relevant to roll a whole DMZ for home use and port mapping will be supported by a higher % of home routing infrastructure than DMZs.
- Comment on Bambu Lab Controversy Deepens: Firmware Update Sparks Backlash 2 weeks ago:
Genuine question, are there any “just hit print” open source printers on the market yet? I don’t have the time for maintaining a printer on it’s own, which is why I’ve enjoyed my A1 mini so much (it just works), but I’m of the same opinion as you and would love a viable open-source alternative.
- Comment on The hidden cost of self-hosting 2 weeks ago:
I hate having to run my own backups. That’s been a massively hidden cost behind self hosting that I did not originally account for. Anything sufficiently robust is expensive and anything cheap is unreliable (at least at the scales of data I have, 4k+ RAW videos and photos are massive).
- Comment on Jeff Geerling: Self-hosting your own media considered harmful (updated). Youtube removed his content, saying that self hosting content is "dangerous or harmful content" 2 weeks ago:
Hey kid… You wanna self host an api call? 😈
- Comment on What are the benefits of a server having multiple public IP addresses? 2 weeks ago:
You can run a service on the same port with less processing overhead than a reverse proxy. Additionally it provides you some benefit in domain separation. For $25 I’d pick up one or two, couldn’t hurt to have in the pocket and there are only so many of them afterall.
- Comment on Jellyfin troubles - phone cannot reach 5 weeks ago:
Did you ever resolve this? I’m curious what it was.
- Comment on EA employees "upset and confused" at return to office mandate 1 month ago:
Goodluck. Not to be defeatest, but that’s so so far down the list of issues workers need to address before the turn of the next century if we’re to have any chance of returning our lives to ourselves.
- Comment on Jellyfin troubles - phone cannot reach 1 month ago:
The server caches your device ID at some point I believe, although I’m not a jellyfin developer so you’d need to look into their documentation for confirmation if you don’t already know yourself.
- Comment on Jellyfin troubles - phone cannot reach 1 month ago:
🤔 it’s probably something cache related or due to a clock offset then. Beyond that I’m not sure what I would investigate.
- Comment on Jellyfin troubles - phone cannot reach 1 month ago:
So there’s a change regarding reverse proxies in one of the recent updates that requires you to specify the approved ip of the reverse proxy. Are you using one? If so, it could be this.
- Comment on Ubisoft argues players don't own their games in wake of The Crew lawsuit 1 month ago:
It’s actually very very clear you’re just buying a license, people just… Don’t care. I don’t think they should be able to sell it in the way that they do, given that it’s predatory and destructive, but if you read the terms and conditions of any storefront you’ve purchased the game from they’re extremely explicit you’re buying a revokable 1 person license to play the game from Ubisoft.
- Comment on Would you use a self-hosted, AI-powered search engine for your favorite sites? 2 months ago:
Indexing websites adds significant traffic to those sites. It’s not a good idea for the health of the internet for everyone to be Indexing, maybe you should search for a precompiled index you can train the lmm on and distribute it daily. Or do the crawling yourself and distribute that index.
- Comment on What's up, selfhosters? - The Sunday thread 3 months ago:
Replaced the fan with a bad bearing on one of my proxmox hosts today. For a short while I figured I was going crazy because it seemed to stop making noise when I actually got close to the server, but it finally fully gave today and I was able to identify and swap it.
- Comment on Microsoft is launching a $349 desktop PC that only runs Windows 11 by streaming it from the cloud 7 months ago:
😎 profit, synergy, enterprise, buzzword.
- Comment on Microsoft is launching a $349 desktop PC that only runs Windows 11 by streaming it from the cloud 7 months ago:
Doubt it’ll ever catch on with anything except maybe the largest of orgs. You can just procure office task ready machines so cheaply these days, and Windows 365 is like $45/user/month. Far more than what we pay for windows licensing, user Cals, and office licensing all combined.
- Comment on Gluetun container "needs" to leak DNS? 8 months ago:
How I imagine you responding to your singular downvoter:
- Comment on Cloud Imperium quietly steal Star Citizen developers' weekends from under them with mandated overtime in the lead up to Citizencon 8 months ago:
Seems fine. They’re providing food, overtime pay, and pto for use at a future date. That’s a better deal than a lot of employees get.