this post was submitted on 31 Mar 2025
214 points (98.2% liked)

Selfhosted

59923 readers
596 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam.

  3. Posts here are to be centered around self-hosting. Please ensure it is clear in your post how it relates to self-hosting.

  4. Don't duplicate the full text of your blog or git here. Just post the link for folks to click.

  5. Submission headline should match the article title.

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
ayyy@sh.itjust.works
curbstickle@anarchist.nexus
curbstickle_lw@lemmy.world
214
How to secure Jellyfin hosted over the internet? (programming.dev)
submitted 1 year ago by lambda@programming.dev to c/selfhosted@lemmy.world
137 comments fedilink hide all child comments
 

I already host multiple services via caddy as my reverse proxy. Jellyfin, I am worried about authentication. How do you secure it?

you are viewing a single comment's thread
view the rest of the comments
[–] jagged_circle@feddit.nl 7 points 1 year ago (1 children)

I have another site on a different port that sits behind basic auth and adds the IP to a short ipset whitelist.

So first I have to auth into that site with basic auth, then I load jellyfin on the other port.

[–] Overboard8171@startrek.website 4 points 1 year ago (1 children)

I don't understand how that isn't widely deployed. I call it poor man's Zero Trust.

[–] jagged_circle@feddit.nl 1 points 1 year ago

I mean I'd rather jellyfin fix the bug and let me just put that behind basic auth