that was my thought exactly, that with a VPN, the only problem could be vpn users with (windows) machines that are infected.
my jellyfin is running in a jail (BSD naming of a VM) which runs on trueNAS.
so if jellyfin has unknown security flaws, and the entire jail system of BSD has unknown security flaws, then the attack vector, through a reverse proxy, could potentially be the entire NAS running this?
#trueNAS #trueNAScore #jellyfin #reverseProxy
Nikhil 🐧 /
npub1le…psjy4
2024-06-16 10:10:12
in reply to nevent1q…cddn
Author Public Key
npub1le2zm87hgfvcr7gan70zd2n45w4utuh5qrcpy7gk0w84ff9g36yq9psjy4Published at
2024-06-16 10:10:12Event JSON
{
"id": "b6c6db35f894a259df1794737a39676043d9e1232c1c8372d26f02ec63e31ae5",
"pubkey": "fe542d9fd7425981f91d9f9e26aa75a3abc5f2f400f01279167b8f54a4a88e88",
"created_at": 1718532612,
"kind": 1,
"tags": [
[
"t",
"TrueNASCore"
],
[
"e",
"6221829a9de49813aa53c599d522bc1b628b35d529d0c00900bae10c1728e115",
"",
"root"
],
[
"p",
"fe542d9fd7425981f91d9f9e26aa75a3abc5f2f400f01279167b8f54a4a88e88"
],
[
"p",
"48ed96a072cb386c2f704daeac1d2a1ed203ee5628ffc4f1832f243739b86d4f"
],
[
"t",
"truenas"
],
[
"e",
"a817a16dc4f28b45d64a0365e2cafca71353d482538658306bd6c38bf536b420",
"",
"reply"
],
[
"proxy",
"https://social.linux.pizza/@realestninja/112625753260713459",
"web"
],
[
"t",
"reverseproxy"
],
[
"t",
"jellyfin"
],
[
"proxy",
"https://social.linux.pizza/users/realestninja/statuses/112625753260713459",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://social.linux.pizza/users/realestninja/statuses/112625753260713459",
"pink.momostr"
]
],
"content": "that was my thought exactly, that with a VPN, the only problem could be vpn users with (windows) machines that are infected.\n\nmy jellyfin is running in a jail (BSD naming of a VM) which runs on trueNAS. \n\nso if jellyfin has unknown security flaws, and the entire jail system of BSD has unknown security flaws, then the attack vector, through a reverse proxy, could potentially be the entire NAS running this?\n\n#trueNAS #trueNAScore #jellyfin #reverseProxy",
"sig": "0ec36f506143ee553113999285cfb8a38bfac3c24a351d1a427a37bdcaca1d097ddd520c737e342ce5787ad2aec8969a9d7b3ee9c403912a000ba36c922317e0"
}