Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ

69521 readers

482 users here now

⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.

Rules • Full Version

1. Posts must be related to the discussion of digital piracy

2. Don't request invites, trade, sell, or self-promote

3. Don't request or link to specific pirated titles, including DMs

4. Don't submit low-quality posts, be entitled, or harass others

Loot, Pillage, & Plunder

We heartily recommend visiting the free port of freemediaheckyeah (aka FMHY) while you sail the high seas, for all the freshest links the ocean has to offer.

📜 c/Piracy Wiki (Community Edition):

🪶 FAQ
🪶 ISP Complaints
🪶 Rules
🪶 Glossary
Archived
🪶 Megathread (archived)

🏴‍☠️ Other communities

FUCK ADOBE!

!GenP@lemmy.dbzer0.com

Torrenting/P2P:

Gaming:

💰 Please help cover server costs.


Ko-fi	Liberapay

founded 3 years ago

MODERATORS

db0@lemmy.dbzer0.com

Flatworm7591@lemmy.dbzer0.com

RandomLegend@lemmy.dbzer0.com

Andromxda@lemmy.dbzer0.com

CosmicTurtle0@lemmy.dbzer0.com

tenchiken@lemmy.dbzer0.com

unruffled@anarchist.nexus

321

Plex price gouging any users they have left (lazysoci.al)

submitted 1 day ago* (last edited 1 day ago) by lazynooblet@lazysoci.al to c/piracy@lemmy.dbzer0.com

158 comments fedilink hide all child comments

I bought Plex pass years ago for £79. The new price of $749.99 is INSANE.

No wonder all the cool people are using Jellyfin.

you are viewing a single comment's thread
view the rest of the comments

[–] lena@gregtech.eu 2 points 20 hours ago (2 children)

Yeah I should've probably emphasised that Plex isn't free of security vulnerabilities either, but I didn't because I never even considered running it on my server, given the insane price.

Why participate with this argument? I was hoping to be proven wrong on the claim that jellyfin is insecure.

[–] frongt@lemmy.zip 2 points 18 hours ago

It's impossible to prove a negative, that there are no vulnerabilities.

[–] Appoxo@lemmy.dbzer0.com 0 points 16 hours ago (1 children)

I was hoping to be proven wrong on the claim that jellyfin is insecure.

The constant argument being parotted (IMO a bit extra overblown) that you can read files by knowing the file path and being able to access the stream urls without authentication.

So if I know
/data/media/movie/A Super Secret Movie [2026] (not unlikely due to assumed default paths with docker installations)
and
https://jellyfin.example.local/
I can supposedly guess that the URL is https://jellyfin.example.local/video/source=?1029rifos0xomsoc93 and access the stream.

Is it an issue? Yes, you are bypassing active authentication
What is the actual security problem? You can be ddosed by being streames to death? Oh no, what will I do /s

If anyone else can give a more grave exampe why it's worse than the above example: Please do. I don't see the issue besides bypassing authentication.

[–] frongt@lemmy.zip 1 points 15 hours ago (1 children)

That's one of the ones we know about. Consider the ones that might exist that haven't been found yet.

[–] Appoxo@lemmy.dbzer0.com 1 points 15 hours ago

Literally the same can be said about Plex.