204
How would you expose Jellyfin securely without a vpn? (discuss.online)
submitted 1 month ago by kiol@discuss.online to c/selfhosted@lemmy.world
201 comments fedilink hide all child comments

Assuming the user will not be connecting over vpn, but is both remote and non-technical, how would you expose Jellyfin to them securely?

you are viewing a single comment's thread
view the rest of the comments
[-] axx@slrpnk.net 1 points 1 month ago

What's your concern about running it behind a reverse proxy, like caddy or nginx?

[-] zaggynl@feddit.nl 2 points 3 weeks ago* (last edited 3 weeks ago)

I don't consider Jellyfin a fully secure and audited application to host, unsecured endpoints come to mind, that and the less exposed to the whole internet the better.

https://github.com/jellyfin/jellyfin/issues/13987

Things like these scare me:

https://blog.lastpass.com/posts/notice-of-recent-security-incident

https://www.androidpolice.com/lastpass-breach-plex-update/

this post was submitted on 23 May 2026
204 points (97.2% liked)

Selfhosted

60177 readers
676 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Detailed Rules Post

  1. Be civil.

  2. No spam.

  3. Posts are to be related to self-hosting.

  4. Don't duplicate the full text of your blog or readme if you're providing a link.

  5. Submission headline should match the article title.

  6. No trolling.

  7. Promotion posts require active participation, with an account that is at least 30 days old. F/LOSS without a paywall has exceptions, with requirements. See the rules link for details.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
ayyy@sh.itjust.works
curbstickle@anarchist.nexus
curbstickle_lw@lemmy.world