Leaving this for people to realize that there's a literal chapter's worth of book of security issues that haven't been fixed and seems to keep getting the can kicked down the road... for over 4 years now.
https://github.com/jellyfin/jellyfin/issues/5415
I love Jellyfin... people need to implement it sensibly knowing the potential risks.
Edit: Ah yes! I MUST be a shill for saying "Implement it sensibly".
Here, let me "de-shill" myself.
You have several options to make Jellyfin serviceable to users outside of your literal LAN network.
- setup a VPN. Pray you don't have a user on a device that doesn't have a VPN app that you can work with.
- setup whitelisting on your server. Pray that IP addresses don't change.
- setup fail2ban or crowdsec. Pray that you users don't piss off either by doing user things and getting locked out.
If anything above fails... you're likely on the hook for support. Hope you plan for that!
- Obfuscate your paths (change
/movies/title (year)/title.ext
to something like/9ZHBrvNH4dKQDYFa2parH32qqSFpjsWTataVkjy4NqPxpVktT55PkEee5YSVRvUQ/movies/title (year)/title.ext
). MD5 is now much harder to generate/guess... pray that there isn't some other vulnerability. Gotta go back and reconfigure and organize your shit. Oh and make sure that your docker mounts aren't crushing the path!
Am I still a Plex shill? BTW I run Jellyfin AND Plex. Literally side by side. Different uses for different cases because Jellyfin just can't compete with Plex for sharing with dumb-ass relatives.
Yet another "anti-military" article from people who clearly don't understand the military.
Hi.. It's me again. Army Veteran. Showing up in the comments of another military article because there is clear and obvious reasons why this is happening that has nothing to do with Trump (Not sure why so many other commenters jump on this every time). Claiming that this is racist is crazy when the purpose and reason for it is innately to stop people from dying unnecessarily. If you think this is racism, I'd argue that it's not. I'd also argue that ignoring the medical problem can actually kill those you think you're protecting from "racism".
This is not new. While I was in (primarily under Obama) people with problematic beard hair would need to be medically evaluated. At one point I was evaluated as razor bumps kept coming up for a little while (cleared up eventually though). The primary reason for the military caring about it is because NBC masks need to fit particularly well in order for them to do their jobs. For those who don't know what NBC means, gas masks. Nothing sucks more than doing gas chamber training and getting a mask that doesn't fit well. Considering the current world capabilities, it would be a disaster to send a unit out and have them all get nailed with mustard gas and have just the "black" (quoting this because it's inaccurate, I saw many people need a profile over bad shaves. a plurality were actually black) people die because with hair, you can't get a good seal, and with the bumps, you can't get a good seal.
Now up to this point, I've said terms like "profile" and "medically evaluated", none of these things innately remove you from service unless it's extreme (or fails to clear up over significant time). The only thing moving forward is that if it doesn't clear up they want to medically discharge you from service. Here's the rub though, you can't have soldiers that can't put on NBC masks and keep them deployable. It's a basic core task. War is war, it's nasty. The headline that gets written in the worst case scenario is "Black soldiers die in mass NBC attack because mask seals don't work" is the alternative here. This consideration HAS to be addressed when you expect war to kick up (Iran, anyone?). This is a problem... And in my time, I've seen a handful (very few) people hide behind this condition to do less work than their peers, especially to dodge deployable statuses and NBC chamber training.
Lastly, if you read the article "The recent policy update under Brig. Gen. David R. Everly reversed a 2022 rule". This "rule" is very new and was likely found to harm wartime readiness after trying it out. The people getting kicked out would be relatively new recruits in their first enlistment. I can only imagine how much worse their experience was in many training exercises because of the ill-fitting masks, and honestly, I don't really see an alternative that doesn't potentially sacrifice their lives should they deploy. These soldiers will have already served sufficiently to obtain their benefits and it would be a medical discharge, which is not a dishonorable discharge. They would keep any benefits that they had obtained through their service.
And to preempt an argument... "there's no study that says beards/razor bumps interfere with gas masks"... There are. Most of them say minimal beards/hair is fine (less than 1/16th of an inch) to get a mask seal, where 1/8 can already lead to issues. But it's understudied. The risk of getting it wrong is people's lives.
Edit: Typo
Edit2: Reported by a blahaj.zone user...
Lmfao. Apparently pointing out that this was a thing for a long time and restating information in the article itself is misinformation...