Selfhosted

59999 readers

802 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
No spam.
Posts here are to be centered around self-hosting. Please ensure it is clear in your post how it relates to self-hosting.
Don't duplicate the full text of your blog or git here. Just post the link for folks to click.
Submission headline should match the article title.
No trolling.

Resources:

selfh.st Newsletter and index of selfhosted software and apps
awesome-selfhosted software
awesome-sysadmin resources
Self-Hosted Podcast from Jupiter Broadcasting

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago

MODERATORS

curbstickle@anarchist.nexus

curbstickle_lw@lemmy.world

709

Jellyfin critical security update - This is not a joke (github.com)

submitted 2 months ago by Mubelotix@jlai.lu to c/selfhosted@lemmy.world

260 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] Scrollone@feddit.it 1 points 2 months ago (1 children)

I know, but your security then depends on the package maintainer to keep the image up to date

[–] phobiac@lemmy.world 1 points 2 months ago

Am officially maintained Docker image is no less a security concern than an officially maintained apt repo. Depending on how you set up a container stack it can even be more secure. An attacker gaining root access to a container that you've given extremely selective access to the host machine is far better than them gaining root access to your actual system.