2024-04-17, 12:17 PM
(This post was last modified: 2024-04-17, 12:19 PM by c2h6. Edited 1 time in total.)
Hey guys,
I've been using Jellyfin for a year or so, and finally mustered up the courage to figure out remote hosting. I have it working now using a combination of DuckDNS (to resolve my dynamic DNS) + Caddy (reverse proxy).
The thing is, I'm just a trained monkey following guides online. I know how everything works conceptually, but that's about it. I actually tried nginx for reverse proxy first but couldn't get the configuration right, and ended up following another guide that used Caddy - that's how clueless I am about networking.
My jellyfin server is running off my main computer, and I'm worried about any potential security risks in exposing my computer to the Internet. Here's my configuration:
- I have multiple users for Jellyfin but all of them don't have delete access (and are all password-protected). The only account with delete access is my Jellyfin admin account, and I disabled remote access for that account
- Currently only have Jellyfin but I hope to figure out nextcloud some time in future (I just need to learn how to configure Caddy to different ports based on subdomains/URLs)
- Router only has ports 80, 443 and another port (used by a torrent client) open. I've also changed the password to access my router's settings.
Given the above, what's the worst that a bad actor could do? I'm hoping that if I set everything right, the only possible security issue (barring an exploit in the Jellyfin software) is that someone guesses one of my users' passwords and gets to watch my media library?
Thanks!
I've been using Jellyfin for a year or so, and finally mustered up the courage to figure out remote hosting. I have it working now using a combination of DuckDNS (to resolve my dynamic DNS) + Caddy (reverse proxy).
The thing is, I'm just a trained monkey following guides online. I know how everything works conceptually, but that's about it. I actually tried nginx for reverse proxy first but couldn't get the configuration right, and ended up following another guide that used Caddy - that's how clueless I am about networking.
My jellyfin server is running off my main computer, and I'm worried about any potential security risks in exposing my computer to the Internet. Here's my configuration:
- I have multiple users for Jellyfin but all of them don't have delete access (and are all password-protected). The only account with delete access is my Jellyfin admin account, and I disabled remote access for that account
- Currently only have Jellyfin but I hope to figure out nextcloud some time in future (I just need to learn how to configure Caddy to different ports based on subdomains/URLs)
- Router only has ports 80, 443 and another port (used by a torrent client) open. I've also changed the password to access my router's settings.
Given the above, what's the worst that a bad actor could do? I'm hoping that if I set everything right, the only possible security issue (barring an exploit in the Jellyfin software) is that someone guesses one of my users' passwords and gets to watch my media library?
Thanks!