• 0 Posts
  • 2 Comments
Joined 2 years ago
Cake day: June 19th, 2023
  • fightforlife@lemmy.worldtoSelfhosted@lemmy.worldWhat's the security situation when opening a jellyfin server up for casting?English
    1·
    4 hours ago

    An Idea I am also using for other things where I do not want to use a VPN:

    1. Setup a reverse proxy (e.g. traefik)
    2. Setup an oauth middleware for everything (forward Auth)
    3. Create rules to exempt very specific request based on IP, headers, etc… from the middleware.

    In the casting use case you have to find a request and check if there is any parameter that you can use to safely whitelist the request. Ofcourse someone could get behind this and fake the request to match the whitelist. But without knowing that there is even a whitelist no one will really try