this post was submitted on 08 Jun 2026
458 points (96.9% liked)

Selfhosted

59769 readers
831 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

  7. No low-effort posts. This is subjective and will largely be determined by the community member reports.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
ayyy@sh.itjust.works
curbstickle@anarchist.nexus
curbstickle_lw@lemmy.world
458
Why I moved my Plex library to Jellyfin after 14 years (the.unknown-universe.co.uk)
submitted 1 day ago by TheIPW@lemmy.ml to c/selfhosted@lemmy.world
224 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] lostbit@feddit.nl 6 points 14 hours ago (2 children)

Don’t selfhost if you think a reverse proxy is tricky.

[–] Flatfire@lemmy.ca 1 points 10 hours ago

That seems like a rather arrogant tone to take. Reverse proxies are complicated. Easy to set up, but challenging to configure depending on what your needs are. Not everyone wants a homelab.

Everyone's journey starts somewhere and sometimes people's needs just don't extend beyond the easier choices available.

[–] Mic_Check_One_Two@reddthat.com 0 points 9 hours ago* (last edited 9 hours ago) (1 children)

You shouldn’t even have Jellyfin on a reverse proxy, because it shouldn’t be externally available. There are several known security vulnerabilities (all marked as “closed” due to inactivity on git) that the devs have said will likely never be patched. Because patching them requires breaking away from the Emby fork that the entire project is built on.

It should only be externally available via a private VPN. And that alone excludes a lot of “I want to share my library with friends/family” scenarios, because step 0 will be getting their devices connected to your VPN.

At the very least, set up some form of access control/username+PW directly on your reverse proxy as a secondary security measure. Because if you can reach the JF landing page, you can exploit those vulnerabilities without needing a valid JF login. So you should configure your reverse proxy to act as a gatekeeper, and ensure attackers can’t even reach JF at all without having a valid login to your reverse proxy. But this will break most JF apps (except for browsers) because they likely won’t have any way to give an initial user+pass to the reverse proxy before they hit the JF server.

[–] lostbit@feddit.nl 1 points 49 minutes ago* (last edited 34 minutes ago)

Theres not a single high risk security issue in there as far i can see. Can you point them out?