Quite simply we must boycott any company using robotics

What? Robots aren’t the problem. The problem is the stubborn refusal to accept that we are moving to a point where not everyone will have to work and that we will have to think about how we can move on from that

Maybe the rest will finally follow suit when Apple drops the obnoxious cutouts and punchholes. can’t wait to have more than 2 phones available again

https://github.com/jellyfin/jellyfin/issues/5415

The magic bullet in that sentence is VPN not reverse proxy

Doesn’t do shit when large parts of the Backend are not authenticated

The alternative is that dey just don’t care or are not capable of fixing it, despite numerous suggestions in the github thread. Both don’t bode well for the project, especially seeing as that ticket has veen open and discussed for almost 5 years

You don’t need to post it. Bots are scanning every ip, 24/7, looking for servers to infect, endpoints to abuse and data to extract.

Go set up a ssh tarpit on your server and watch the flies drown in it. I will not expose anything on my server that has so many known vulnerabilities

Your content might be legitimate, but the vast majority use Plex and Jellyfin as a media Server for pirated content and still want to share it with their friends or family. And just FYI, most blurays and DVDs also forbid this kind of sharing in their license

Nobody seen anybody needs to switch to jellyfin

I guess you haven’t read the rest of the comments here :D

At this point I just wait and see. I have Jellyfin running in parallel, but the way remote sharing works there, basically requiring a VPN on every client device makes it a non starter for a large portion of my users and with the security situation of the Jellyfin Backend I don’t feel comfortable making it available through my domain.

So for now I will just wait and see and hope that the Jellyfin fanbase could just chill a bit and stop gloating and high giving any time there’s a Plex related news on here

Because Plex handles the initial connection for you allowing the clients to lunch through CGNAT and other shit. Also they handle the authentication, which I would fully agree would be nice to have independent, but that’s the reason

Everything besides VPN breaks their clients because they can’t handle authentication.

My main gripe isnt even that they have these issues, but the way the jellyfin devs are handling, or more correctly, not handling them.

They actively refuse to fix them because it might break client support. Instead of forcing an update or starting a secured v2 of their API, that actually active clients could then update to, they just do nothing

They can stream content from your server or map out what you have on there by using a rainbow table. Depending on the country you live in they can and will use that combined with your IP to start litigating you

After setting up an elaborate VPN scheme

The giant unsecured barn door that is the Jellyfin backend

You shouldn’t blame Plex for your or your users illiteracy

And as a Plex pass user nothing will change for you or your users.

I have both running, but Jellyfin simply cannot fulfill the role Plex currently serves. If there comes a point where it can and Plex actually deteriorates to a point where I don’t want to use it anymore I will switch. I just don’t get why the Jellyfin fanbase has to be so goddamn emotional about this

‘Ongoing efforts’ is a funny way to phrase ‘refuse to fix’

Yeah, no way. Jellyfins Backend is like an open barn door. And with the kind of content most of us here offer through either Jellyfin or Plex, I wouldn’t want to open up like that.

They are not about escalating permissions but about unauthorized access to your library. As some living in a country with professional piracy lawyers, that go out and try to catch people in the act, I won’t open my server to that kind of risk.

I like Jellyfin being open source and all, but the maintainers made it clear that they prefer backwards compatibility with clients over fixing these issues.

I have Plex running alongside Jellyfin as well but opening up Jellyfin to external users is just not an option, since most of them won’t or can’t install a VPN on the devices they use to watch Plex on. And I sure as hell won’t open Jellyfin to the internet