• Login
  • Register
  • Login Register
    Login
    Username/Email:
    Password:
    Or login with a social network below
  • Forum
  • Website
  • GitHub
  • Status
  • Translation
  • Features
  • Team
  • Rules
  • Help
  • Feeds
User Links
  • Login
  • Register
  • Login Register
    Login
    Username/Email:
    Password:
    Or login with a social network below

    Useful Links Forum Website GitHub Status Translation Features Team Rules Help Feeds
    Jellyfin Forum Off Topic Self-hosting & Homelabs Best Security Practices?

     
    • 0 Vote(s) - 0 Average

    Best Security Practices?

    4r5hw45twh
    Offline

    Member

    Posts: 135
    Threads: 34
    Joined: 2024 Mar
    Reputation: 0
    #8
    2025-01-28, 05:01 PM
    (2025-01-28, 04:16 PM)TheDreadPirate Wrote: Nginx Proxy Manager is handling all external accesses on ports 80 and 443.  The port we published in Docker (or did we use host networking?) only refers to docker and not your router.  You should NOT be opening port 8096 on your router.  This would allow unencrypted, direct access to Jellyfin from remote clients.  Which negates the whole purpose of setting up Nginx.

    Remember, Nginx is acting as a middle man between the client and the Jellyfin server.  Remote Jellyfin clients are not directly accessing Jellyfin on port 8096.  They are connecting to Nginx who passes traffic to and from the server and client.  Therefore port 8096 should not be open on your router.

    Ohhhhhh, I gotcha now. Would access to JF matter anyway, though, since it needs a login to access anything? Gonna disable that port after work, but just curious.
    « Next Oldest | Next Newest »

    Users browsing this thread: 3 Guest(s)


    Messages In This Thread
    Best Security Practices? - by 4r5hw45twh - 2025-01-26, 03:46 PM
    RE: Best Security Practices? - by TheDreadPirate - 2025-01-26, 04:50 PM
    RE: Best Security Practices? - by 4r5hw45twh - 2025-01-28, 01:12 AM
    RE: Best Security Practices? - by Host-in-the-Shell - 2025-01-26, 05:05 PM
    RE: Best Security Practices? - by TheDreadPirate - 2025-01-28, 02:41 PM
    RE: Best Security Practices? - by 4r5hw45twh - 2025-01-28, 03:25 PM
    RE: Best Security Practices? - by TheDreadPirate - 2025-01-28, 04:16 PM
    RE: Best Security Practices? - by 4r5hw45twh - 2025-01-28, 05:01 PM
    RE: Best Security Practices? - by TheDreadPirate - 2025-01-28, 05:33 PM
    RE: Best Security Practices? - by bjd223 - 2025-02-21, 12:04 AM
    RE: Best Security Practices? - by TheDreadPirate - 2025-02-21, 01:29 PM
    RE: Best Security Practices? - by KrisMarshall - 2025-06-06, 07:55 AM

    • View a Printable Version
    • Subscribe to this thread
    Forum Jump:

    Home · Team · Help · Contact
    © Designed by D&D - Powered by MyBB
    L


    Jellyfin

    The Free Software Media System

    Linear Mode
    Threaded Mode