None. Dashy’s authentication was famously literally security theatre even with Keycloak. You could just pause the load in browser and have full access to the config. Because it let you iframe whatever you could now do so with local services to enum. Somehow Jellyfin is unbustable though. So it’s a bit of a crapshoot. Look at past vulnerabilities. Stuff like XSS unless stored you don’t need to worry about, clickjacking, tab nabbing etc. On the other hand anything that’s arbitrary file read, SQLI, RCE, LFI, RFI, SSRF etc. I would look at seriously. E.g. don’t make your 13ft public because it can be used to literally enumerate your entire private network.

Yea. But to an extent it’s your choice to participate you can just not give a fuck about what’s not your problem or concern as long as you get paid.

Yes I host everything public with cloudflare tunnels. Everything more heavy is VPN with DDNS on invite basis to friends and fam. For the former it’s Hassle-free HTTPS, no reverse proxy, no firewall, no nonsense.

Tbf Devs are usually massive pieces of shit as well, thousands of over-inflated egos, cutthroat techbros and cynical asset-swappers who hate g*mers more than necessary out there for every one decent fella or lady who’s autistic about meshes or render pipelines, but prob works for a Chinese online casino optimizing animation timings for whale click-through.

I had the same issue just last week with a more recent copy of premiere I got. Just block all internet access in your firewall to Photoshop and it will go away.

That’s awesome. Glad we’re finally automating the most important things in life - internet arguments.

Episod

Anybody got a link?

So basically you’re using Unix sockets on your LAN level between nginx and internal machines for finer grained access control and because you’re running out of ports. That’s really cool! I’ll have to read into this myself.

Compatible with Unix sockets?

We need some sort of historical torrent indexer for lost/dead torrents, a wayback machine for magnet links that gathers/scrapes them automagically from the internet

Sweetie.

I can afford the hardware because I don’t pay for the software.

Yeah but that should be okay as long as he’s getting it from legitimate places (rarbg, official fitgirl site, cs.rin.ru, rutracker etc).

I’ve not had an AV for like 10+ years, had defender disabled with GPO as soon as I installed W10 and had no issues.

The best AV is your brain. Obviously if you download GTA_6 _(Brazil)_by_xP3tYa1337x.pdf.html with an embedded .hta directly from an IP address in Kamchatka and you have IE installed then yeah maybe you need to give things a manual scan pass with defender or malwarebytes (or just toss it in a VM) once in a while but otherwise you’re golden.

Even most vulns today labeled 0day are either unexploitable or require the user to be a dumb motherfucker.

Trust me.

Where?

Just don’t use one. Just don’t download anything dodgy and you’re golden.

That’s a lot of work. Thanks though.

Is there a way to do reverse tunnels, or something like it, so not opening any ports at all on the network, without cloudflare?

Closest to that XP I got was generating VPN keys and distributing them to close friends, running DDNS (no-ip) on my Pi with a pivpn server and then accessing JellyFin that way.

Removed by mod

Fucking cunts. That’s not a bad move you have to agree, KYC killed crypto ATMs and the general boom of all that.

Didn’t even know that was a thing ngl and I use qbit nox on my server. Kinda obsoletes the *arr suite