Sadly, using small niche VPNs that might be more trusted makes you stand out more.

This probably doesn’t matter does it? Because being spotted as a mulvad, airvpn, etc user doesn’t make you more of a target for anything.

It just means that if they try to trace your connection back to you, they won’t find anything out, because you have a trusted zero-logging vpn.

Only think I could see is it could potentially be easier to track usage through the ip and assume it’s one person, but idk you could do that with anything if you look at the request timings, etc. It’s still just guesses.

Am i missing something?

It’s pretty unusual to have a Mullvad user on your server

Probably not on the usual sites people visit (youtube, etc, the big sites 99% of ppl go to exclusively), but I can see your point for any smaller site.

Because 5€ for their current service is overpriced

Airvpn provide a discount for each extra month you sign up for in bulk which is nice. It’s a great service in my opinion.

https://airvpn.org/

I find it hard to believe that there are bots scanning for jellyfin exploits, since as far as I’m aware, the exploit is for viewing content without auth. 99% of bots are scanning for old instances of wordpress or other outdated software to exploit.

If my content on Jellyfin was illegitimate, the person scanning for my files would have to prove that before they can sue, no? I don’t think this makes sense for anyone to do.

p.s. I won’t argue that YOU should setup software that you dont want to, just that this particular reason not to may be a bit farfetched.

I agree with you, it’s likely this vulnerability is only known because Jellyfin is open source… how many are hiding in Plex’s proprietary source code…

Anyways when has anyone ever been pwnd by this “exploit”, I have seriously never heard of anyone being “hacked” by one of them.

Definitely overblown as far as I am aware… don’t post your instance url all over the internet and you will likely be fine.

Using Plex (is fine, do whatever u want) and giving them your data instead doesn’t really help you (or at least sending your data through them).

you will absolutely lose a bunch of them

I always see this and I have to ask: why do you care?

They likely aren’t paid customers of yours, if they don’t follow your rules and the software you like to use, then they are free to use any other method of consuming media.

VPN

Have to agree with the other comment that asks why do you need to use a vpn. Fax

My question is, where are you posting the address to your jellyfin server that someone who finds it will go through the trouble of even doing this?

Also how could they start litigating you based on the content you have? If I had illegal content on my server, I would be really dumb to expose it on the internet on a public jellyfin server. Otherwise my movies, tv, etc are my paid for content…

I believe in the underlying message (use linux), but doesn’t practically every big company change their privacy policy or tos every 10 minutes.

I don’t trust any governmental body, probably for the best.

💀

I believe their license (GPLv3) doesn’t permit modifying the source code without releasing it to anyone who asks for it, but realistically, if it’s only code they have written, they won’t sue themself over it.

I’m no licensing expert, but that’s how I see it.

The internet is full of bots pounding at your machines to get in. It is only a matter of time until the breach Jellyfin.

If you are talking about brute force attacks for your password, then use a good password… and something like fail2ban to block ips that are spamming you.

This point doesn’t exactly match, but: public services like google auth don’t require users use vpns. They have a lot more money to keep stuff secure, but you may see my point… auth isn’t too trivial of a feature to keep secure nowadays. They implement similar protections, something to block spammers and make users have good passwords (if you dont use a good password, you are still vulnerable on any service).

I don’t know much about this, but just wanted to thank you for continuing the discussion even though I can’t myself because of a lack of knowlege here.

Others prefer insults 🥹

I cannot read the entire transcript, but from what I did read, it seems to be talking about how Nazis slaughtered children with autism.

Maybe you can draw the conclusion that he (rfk) is collecting data on autistic people so that he can slaughter them too, but that seems very far fetched doesn’t it?

If I’m missing something important from what I didn’t read, please let me know.

Yes. The nazis tried to cure autism… (/s if it’s not obvious).

Seriously, why are you comparing this to Nazis.

I don’t know why the car has the persons name, but it’s the same thing with most peoples smartphones. People usually never turn off bluetooth when not in use and it’s always blasting their name. Though it is of course easier to see who Oscar is when there’s a whole car model to match it to.

For car’s, I wonder why they can’t only blast a device name while in pairing mode. Dunno of it’s just not a possibility, but that seems smort.