Collection of potential security issues in Jellyfin · Issue #5415 · jellyfin/jellyfin
github.com
Collection of potential security issues in Jellyfin This is a non exhaustive list of potential security issues found in Jellyfin. Some of these might cause controversy. Some of these are design fla...

Collection of potential security issues in Jellyfin This is a non exhaustive list of potential security issues found in Jellyfin. Some of these might cause controversy. Some of these are design fla…

  • anarchiddy@lemmy.dbzer0.comEnglish
    43·
    1 day ago

    I’m not sure who needs to hear this, but unless you work as a security engineer or in another security-focused tech field, you really shouldn’t be exposing your homelab to the open internet anyway

    Most people access their homelabs via VPN - i don’t see anything here that’s a problem for that use-case.

    • jagged_circle@feddit.nlEnglish
      3·
      20 hours ago

      I need to run a VPN already. Fine for desktop, but this isn’t a solution for mobile (where you can’t run two VPNs simultaneously)

      • Hareen@social.ookami.space
        11·
        20 hours ago

        @jagged_circle @anarchiddy

        It’s actually possible to run 2 VPNs simultaneously on mobile using RethinkDNS which is an app available on F-Droid. For example I’m currently connected to MullvadVPN and my home network at the same time using two WireGuard configs.

        • jagged_circle@feddit.nlEnglish
          2·
          14 hours ago

          Can you order the wireguard connections?

          Eg I want my connections to my home server VPN to first go through my mullvad VPN. Because I dont want any connections coming out of my device that don’t go through a shared VPN or Tor.

          • mic_check_one_two@lemmy.dbzer0.comEnglish
            1·
            2 hours ago

            This may be easier to do on your home network’s router. For instance, mine allows me to set it up as a VPN host, and also to connect to a VPN provider. It has the option to pass all of the connected clients through the connected VPN. So for instance, if I connect my phone to my home VPN, and my home router is connected to Mullvad, my phone’s traffic also gets passed through Mullvad.

          • Hareen@social.ookami.space
            1·
            10 hours ago

            @jagged_circle from my experience with it, I don’t think it’s possible to route VPN traffic via another VPN. It only lets you split tunnel app traffic via multiple VPNs of choice as per attached image.

            Another way to achieve something similar would be to setup a work and a private space (recently introduced on android). Each can run it’s own VPN connection which allows you to run 3 simulataneous VPN connections on android.

            Screenshot of Rethinkdns with multiple wireguard configurations