• 2 Posts
  • 14 Comments
Joined 2 years ago
cake
Cake day: July 3rd, 2023

help-circle
  • Libraries were simple enough, sure, but have you delved into the full settings? Trying to figure out the correct settings for QuickSync hardware acceleration was a mission in and of itself and there’s very little guidance on what any of the options mean or do. I don’t have the container running right now or I’d provide examples, but In Plex it’s a single checkbox.

    I’m sure Jellyfin will get there and it’s a cool project, but it’s fairly obvious that it’s written by hobbyists, for hobbyists. Meanwhile Plex excels at just working straight out of the box.


  • Judging by the rest of the thread I’m going to get downvoted for this, but what the hell:

    I’m sure I’ll switch to Jellyfin eventually but I tried it out a few weeks ago to see what all the hype was about and it just… wasn’t great. It was difficult to setup, with way too many overly-complicated settings, and then it refused to play one of the two test files I tried. Like it or not there’s a reason that Plex is the dominant player in the game, and a large part of that reason is that it verges on plug-and-play for simplicity of both setup and use.

    Yes, it sucks that they’re removing remote streaming for free users, but I imagine there’s a significant chunk of users who don’t know or care how to properly open their server up to the world and are relying on the Plex proxies for their streams (which happens entirely in the background), and those aren’t going to be cheap to run. Maybe putting them behind a paywall will provide the resources to make them faster.

    I did buy a lifetime pass last time they announced a price hike; it’s honestly paid for itself many times over, and I’ve been encouraging other users I know to do the same before this next one, because yes, it is a significant hike this time around. That said, while I wouldn’t pay monthly for it, I do still feel like the lifetime pass is tremendous value for such a polished product. It’s a shame they’ve had to do it at all, but I don’t begrudge them for it.


  • Good shout. I’ve just recently moved from Pihole to Adguard Home myself, complete with Hagezi lists. I consider myself very tech savvy and I work in the field but AGH suits my needs much better.

    One example is wildcard DNS to route all of my hosted services via reverse proxy. In Pihole I had to make weird blocking rules to make this work, but AGH has specific settings for it. It also supports DoH out of the box, whereas Pihole needs non-standard faffery to get it working.

    Very pleased with AGH in general.





  • Yeah, everything that’s already been said, except that I specifically chose an off-the-shelf Synology NAS with Docker support to run my core setup for this exact reason. It needs a reboot maybe once or twice a year for critical updates but is otherwise rock solid.

    I have since added a small N100 box for things that need a little extra grunt (Plex mainly) but I run Ubuntu Server LTS with Docker on that and do maintenance on it about as often as I reboot the NAS.





  • TedZanzibar@feddit.uktoSelfhosted@lemmy.worldHelp me harden my home server
    link
    fedilink
    English
    arrow-up
    0
    arrow-down
    1
    ·
    5 months ago
    1. Sure but there’s no reason to openly advertise that yours has open services behind it.
    2. Absolutely. There are countries that I’m never going to travel there so why would I need to allow access to my stuff from there? If you think it’s nonsense then don’t use it, but you do you and I’ll do me.
    3. See point 3.

    We all need to decide for ourselves what we’re comfortable with and what we’re not and then implement appropriate measures to suit. I’m not sure why you’re arguing with me over how I setup my own services for my own use.


  • TedZanzibar@feddit.uktoSelfhosted@lemmy.worldHelp me harden my home server
    link
    fedilink
    English
    arrow-up
    0
    arrow-down
    1
    ·
    5 months ago

    Admittedly I’m paranoid, but I’d be looking to:

    1. Isolate your personal data from any web facing servers as much as possible. I break my own rule here with Immich, but I also…
    2. Use a Cloudflare tunnel instead of opening ports on your router directly. This gets your IP address out of public record.
    3. Use Cloudflare’s WAF features to limit ingress to trusted countries at a minimum.
    4. If you can get your head around it, lock things down more with features like Cloudflare device authentication.
    5. Especially if you don’t do step 4: Integrate Crowdsec into your Nginx setup to block probes, known bot IPs, and common attack vectors.

    All of the above is free, but past step 2 can be difficult to setup. The peace of mind once it is, however, is worth it to me.