A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
No spam posting.
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
No trolling.
Resources:
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
after almost 15yrs my plex server is no more. jellyfin behind nginx with authentik is running very nicely.
I've heard jellyfin has a lot of security issues, which I don't know if that's accurate or not. But the BIGGEST issue is lack of a proper tvOS app. I really don't feel like using Infuse or some other app just to use my library. Year after year I hear about people switching and yet, the gap is simply still there.
I’ve heard jellyfin has a lot of security issues
The biggest known stuff I saw on their GitHub is that a number of the exposed service URLs under the hood don't require auth. So, it's open-source with known requirements, you can tell easily from the outside that it's running, and you can cause it to activate a LOT of packages without logging in. That's a zero-day in any package that can be passed a payload away from disaster.
AS far as TVOS, I'm kinda surprised swiftfin doesn't service you.
Assuming this is all true, sure its not great but how much does it matter?
Most have jellyfin in a docker. My jellyfin can't only has read only accses to the media folder. Only the config folder has write access. Assuming the worst case scenario here, how much damage can than do?
Yeah, Samsung TVs don’t have a native Jellyfin app either. You can sideload it, but good luck walking your “you touched my computer six months ago and now it’s broken. This is your fault” grandmother through that over the phone.
I am also not up to date on Jellyfin security issues but the biggest one I care about is that its clients don’t support OIDC. There’s a neat plugin for OIDC, but without client support it only works with the web client and I’m not a fan of leaving login pages open to the internet.
if you use the oidc connection and apps that support quick connect you can do it. you basically end up doing things like the plex link process that got implemented when they forced everyone into their authentication service. i almost went that route but opted to leave the password auth from ldap in. its the kind of log in process most people are used too and i've got a few elderly users. i disabled password reset in authentik though and everyone gets a 3 word 24 char minimum password.
Use an LDAP to OIDC bridge?
I just validated that the latest version of the LDAP privilege escalation issue is not an issue anymore. The curl script is in the ticket.
This was the one where a standard user could get plugin credentials, such as the LDAP bind user, and change the LDAP endpoint. I.E., bad.
I chose this one because after going through all of them, it was the only one that allowed access to something that wasn't just data in Jellyfin.
So for me, security is less of an issue knowing that, as only family use the service, and the remaining issues all require a logged in user (hit admin endpoint with user token).
Plus, I tried a few of those and they were also fixed, just not documented yet. I didn't add to those tickets because I was not as formal with my testing.
Op already said they were behind authentik
There also absolutely are apps for tv oses like Android, I use one daily.
I think they meant Apple's "tvOS" - which powers the Apple TV set top box.
~~There's no client for it, if I had to take a guess it's likely due to the costs of doing so.~~
Edit: Whoops, it appears I'm a bit out of date on this.
https://github.com/jellyfin/Swiftfin i've got 5 apple tv users, two android tv and one webostv
Oh interesting, it's been a while since I have tried to use Apple TV (roughly 7 years or so - I don't use any Apple devices anymore), this wasn't available at the time so I'm glad to see there's finally some native support.
there's been a LOT of progress on jellyfin, especially the past year or so. i've been using plex since it forked from xbmc, it ran on the bottom half of a laptop connected to a mostly working projector, both rescued from a dumpster. it's been a fantastic platform for a long time. but i've also wanted off plex since they rolled out the plex account req. jellyfin is finally there for me at least.
Oh lol, of course apple just calls it TV OS
i love jellyfin i just wish there was a nicer way to highlight collections so you could make themed weekly or monthly collections of movies and shows that also still show up in the regular folders.... almost like netflix.
That is coming, I saw a PR for that. Just need to be patient.
I'm probably mistaken, but I think there might actually be a plugin for this? I haven't looked into it myself but I swear I scrolled past a plugin listing similar functionality at some point. Or I could be hallucinating. Or it could even exist but no longer work on the current version of the app. Who knows!?
I'm also 90% done migrating to jellyfin. I've had the instance running for 6 months now, the cultural change to watch jellyfin is complete, except for my wife's iPad.
Heck, I should just retire Plex. That will force the change.
These are the thoughts of a cold and calloused sysadmin. Didn't get the email about the change? Too bad.
yeah it took me about 6 months with jellyfin to feel like i was ready to finally kill plex. the thing that finally did it was getting an email from plex asking if i'd like to check out whats streaming on hbomax.
Long time Jellyfin user here, welcome on board. I think biggest hurdle I should newbies warn about is the lack of availability on TizenOS.
Its possible but needs some extra steps.
This is one of my issue with Jellyfin. It's a workaround to install the app onto Tizen. Updates are again manual. But zero issues since installation and runs smooth.
i have a lifetime plex pass, but I'd consider moving to jellyfin when their closed-captioning support reaches parity with plex. i regularly spin up a jellyfin container to try it out, but i still run into issues. And jellyfin's android apps are mediocre (in particular android auto support), especially for music compared to plexamp
I find Jellyfin’s subtitle search much better than Plex’s. Bonus for leaving a subtitle file right along with your file, instead of buried somewhere else so you can’t easily edit it.
For android auto, I use symfonium as it can hook into my jf library
This. I use symfonium for my audiobooks. Great app.
This is probably the wrong post to ask this question, so sorry in advance.
I have a dual boot Linux + Windows. Jellyfin runs wonderfully on muy Linux partition with docker-compose. Anybody knows how can I clone it in my Windows partition, such that configs, metada and accounts remain the same? I've failed to do this, and only the media volume remaines identical on both OS.
This may not be the answer you are looking for, but one method would be to use WSL on windows to run a Linux distro with Docker installed and just migrate everything over, basically 1-to-1. Then set WSL to auto start when you boot up windows. If you install Docker Desktop on Windows, it will also pick up that you're using Docket via WSL and allow you to manage shit from the client. I don't do that though, I'm ~~a masochist~~ old-school.
Looks like there is a config and cache location in their docker scripts. The easiest way to make a docker application portable is to bind mount the config and cache. That way you have access to the actual files and could copy them to your windows partition.
If you're already using a volume for that data, I think it becomes a bit trickier. I know technically you can move or copy volumes, but I've never tried. Although you could still bind mount a random directory and still copy the files out.
my only issue is how user friendly it isn't compared to Plex.
i genuinely want to leave Plex (especially the more and more they enshittify) but I just could not figure out how to set up jellyfin. i use Linux every day, and know I'm at least a tiny bit more tech smart than your average PC user, but I can't imagine trying to explain to my family how to set jellyfin up.
Host Jellyfin either by running their easy setup script or by hosting it on docker, in order for it to be publicly accessible you will need to either port forward and give people your external IP or you need to have your own website. It's very easy with a docker container to get it running locally, you literally just spin it up, the same as Plex.
Jellyfin us easy to run, but then when you are running it it just doesn't have your files. Are they in the incorrect folder structure? Who knows
I literally just run Kodi and it just works, I can browse my folders and watch stuff
this was the dealbreaker for me. the demand for specific file and directory naming schemes with no default indexer seems deranged.
Long ago I ran a Windows Media Center PC in the living room and used the hell out of it. When WMC finally went EOL, I look for alternatives and found Plex. I never got around to setting up a Plex box, and now I see it too is ready for the scrap heap. I think this is what getting old is. You plan on doing something and never get around to it. Time passes much faster up here in age.
How did you set up Jellyfin with Authentik? Are you using SSO or is it only through LDAP?
i ended up doing both. ldap for the apps. oidc for web based users and the apps that support the quick connect feature. the local user account system works fine too, and ldap would be enough. i just wanted an excuse to play round with sso systems, and it was fun figuring out how to connect all my servers.
authenik has a good docs site for both it's docker container and connecting it to jellyfin. Authelia looked interesting too.