What’s your go too (secure) method for casting over the internet with a Jellyfin server.

I’m wondering what to use and I’m pretty beginner at this

  • Encrypt-KeeperEnglish
    64·
    10 months ago

    Yes they are. The idea that they’re not would be a statistical wonder.

    2k requests made to the Authelia login page in the last 24 hours

    Are you logging into your Authelia login page 2k times a day? If not, I suspect that some (most) of those are malicious lol.

    You don’t know jack shit about what’s going on in another persons network

    It’s the internet, not your network. And I’m well aware of how the internet works. What you’re trying to argue here is like arguing that there’s no possible way that I know your part of the earth revolves around the sun. Unless you’re on a different internet from the rest of us, you’re subject to the same behavior. I mean I guess I didn’t ask if you were hosting your server in North Korea but since you’re posting here, I doubt it.

    I’m not sure why you’re acting like some kind of expert

    Well I am an expert with over a decade of experience in cybersecurity, but I’m not acting like an expert here, I’m acting like somebody with at least a rudimentary understanding of how these things work.

      • Encrypt-KeeperEnglish
        74·
        10 months ago

        a rule blocking connections from other countries, and also requiring the request for the login page come from one of the services on your domain, will block virtually all malicious attempts to access your services.

        Whoa whoa whoa. What malicious attempts?

        You just told me you were the statistical wonder that nobody is bothering attack?

        That’s 2k requests made. None of them were served.

        So those 2k requests were not you then? They were hostile actors attempting to gain unauthorized access to your services?

        Well there we have it folks lmao

          • Encrypt-KeeperEnglish
            53·
            10 months ago

            As OP should be. 2k attempts a day at unauthorized access to your services is a pretty clear indicator of that. Seems you’ve mitigated it well enough, why would you suggest that OP not bother doing the same? If you’re so convinced those 2k attempts are not malicious, then go ahead and remove those rules if they’re unnecessary.

            Perhaps as someone with only meager experience running a Jellyfin server who can’t even recognize malicious traffic to their server, and zero understanding of the modern internet threat landscape, you shouldn’t be spreading misinformation that’s potentially damaging to new selfhosters?

              • Encrypt-KeeperEnglish
                26·
                10 months ago

                It’s over man. You’ve made it very clear you have no idea what you’re talking about, how any of this works, or even what’s going on with your own selfhosted services. Back peddling away from your own arguments and trying to sweep up the beans you’ve already spilled isn’t going to help your case.

                Maybe stick to your day job, I just don’t think that cybersecurity career is in the cards for you.

                  • Encrypt-KeeperEnglish
                    46·
                    10 months ago

                    You’ve argued from a position of weakness against a well known and accepted truth, and have provided zero proof to back up your outlandish claim. On the contrary you’ve admitted to the existence of unwanted access attempts to your services, as well as your usage of mitigations to the same problem you insist doesn’t exist.

                    It’s over man. You’re certified expert yapper but that’s not going to convince me or anyone else here that you know what you’re talking about. It’s a wrap.