this post was submitted on 03 Jul 2025
767 points (96.4% liked)

Selfhosted

46654 readers
843 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
767
goodbye plex (piefed.cdn.blahaj.zone)
submitted 3 days ago by meh@piefed.blahaj.zone to c/selfhosted@lemmy.world
182 comments fedilink hide all child comments
 

after almost 15yrs my plex server is no more. jellyfin behind nginx with authentik is running very nicely.

you are viewing a single comment's thread
view the rest of the comments
[–] macstainless@discuss.tchncs.de 23 points 3 days ago (21 children)

I've heard jellyfin has a lot of security issues, which I don't know if that's accurate or not. But the BIGGEST issue is lack of a proper tvOS app. I really don't feel like using Infuse or some other app just to use my library. Year after year I hear about people switching and yet, the gap is simply still there.

[–] rumba@lemmy.zip 16 points 3 days ago (6 children)

I’ve heard jellyfin has a lot of security issues

The biggest known stuff I saw on their GitHub is that a number of the exposed service URLs under the hood don't require auth. So, it's open-source with known requirements, you can tell easily from the outside that it's running, and you can cause it to activate a LOT of packages without logging in. That's a zero-day in any package that can be passed a payload away from disaster.

AS far as TVOS, I'm kinda surprised swiftfin doesn't service you.

[–] Lem453@lemmy.ca 7 points 3 days ago (1 children)

Assuming this is all true, sure its not great but how much does it matter?

Most have jellyfin in a docker. My jellyfin can't only has read only accses to the media folder. Only the config folder has write access. Assuming the worst case scenario here, how much damage can than do?

[–] rumba@lemmy.zip 7 points 2 days ago

A lot of neophyte self hosters Will try running the binary in Windows instead. Experienced self hosters will indeed use docker.

Then out of the ones that are using docker some of them will set it up as privileged.

And then how many of those people actually make read-only versus how many just add the path and don't think about it.

Don't confuse your good practices with what the average person will do.

load more comments (4 replies)
load more comments (18 replies)