I agree. The only big problem I’m aware of is the length of validity for patents/copyright (and how large corporations for years were getting the laws changed so their IP could last even longer).

After a decade or two, surely you have profiteered enough or at least had enough time to try profiteering from your idea or works? Time for public domain? 75 years (i think it is for copyright) seems crazy to me.

Me not experto though, but I do think lowering the time you can hold your invention or works hostage from the world would be amazing for the general public and advancement of tech (even though when I say that, it sounds like stealing a baby from a mother).

The updates are just really slow so we dont have to deal with them in our life time (evolution).

I feel dumb reading this comment, I struggle every night getting my shirt in a comfortable position including the multiple wake up and tosses and turns.

Need to get me a robe!

Lol never, it’s an anxiety thought of mine, including other similar scenarios.

Hm never thought of a robe, that’s a good fast way to be covered.

In my comment i mean i am afraid to have a fire and leave the house naked not because i would be cold, but because i would be butt naked on the street

To naked sleepers: if there is a fire, are you gonna dress first or evacuate the building in your natural state?

That and similar scenarios makes me a dressed sleeper.

Yes please this is common courtesy aaaaaaaaaaa (very upset)

Email magic links are cool (personally hate when a website only allows this login because I don’t have my email available on every device, but that is unrelated sorta).

I probably wouldn’t go with a relatively new project that isn’t guaranteed to stick around long-term (big hassle to swap provider).

authelia and authentik both have a lot of eyes looking over the code so I’d also feel more confident going with them, even if I can’t get passwordless email login (don’t think they support it but not certain).

I wanna know how it breaks it down day by day. Is it gonna list every single day from the starting point!!! That be funny

I think you will be fine as described.

If you want extra peace of mind with 2FA, you can use Authelia (https://www.authelia.com/integration/openid-connect/clients/peertube/) or a similar service that you can put infront of peertube to handle auth.

Bro said ‘no vpn’ a hundred times lol

Unfortunately no software exists that is fully perfect in this regard (any program could have multiple bugs just waiting to be found), but jellyfin being open source puts it in a better situation for finding vulnerabilities sooner.

True VAC alone is not great (nothing really is), but CS2 (in my opinion) has one of the best systems against abuse, even though legit players like myself can get stuck in low trust factor sometimes.

VAC, trust factor, overwatch (player report reviewing, not sure if this was discontinued) all work together.

Hopefully a big improvement is to come soon with the VAC Live agents that monitor games using AI to predict likely cheaters.

Valve obviously has a big interest in keeping cheaters out, because their skin economy makes them boatloads (literally hehe) of money. I think they are the only company going down this road right now of AI agents, which is unobtrusive to users and should hopefully keep up VACs high accurate ban rate (which is at least a good thing about VAC, when you are banned, in almost all cases, you were indeed cheating (low fase positives)).

I do recognize though that AI agents likely comes with a high cost and may only be implemented in other highly competitive games that make lots of money.

There probably exist other methods, but it’ll take more investment in designing adaptable systems that can work on many games.

It’s honestly just a matter of how much risk you are comfortable with for using jellyfin on the open internet.

(If i remember correctly:) The unauthenticated routes thing can only be used for streaming your content without a login (if you can guess the contents ids on your server I believe).

In my opinion, it’s not worth the hassle of using a vpn because I don’t think this risk is worth mitigating with one.

But everyone has their own personal risk assesment of course.

P.s. Easier than a VPN, at least for logging in other users, would be to use some type of proxy authentication like Authelia. I believe jellyfin has a plugin you can use. It can be complicated to setup, but it’s an option. I believe it should protect all routes exposed by jellyfin so that solves the unauthenticated streaming issue. (I still dont think this is necessary but more choice for the risk-adverse!).

https://github.com/authelia/authelia

do not use default ports 80/443.

In my opinion, you’d be fine using default ports. Guess there’s no harm in using other ports though, other than the pain of having the remember which port to use if you ever forget when adding a new device, etc.

Edit: I should add that im speaking of only ports 80/443 here. If you must expose ssh over the internet (probably shouldnt) for example, then yes, use a non-standard port (I use non standard ports for pretty much all apps except http/s).

True, but it feels less satisfying against bots but still true

Yeah as I mention I don’t really believe it either, just brought it up because it’s a thought.

And yup the simplest explanation is usually the right one.

I do wish they would stop invading our systems with their current anti-cheats (invasive ones) though, that’s the main thing I am worried about.

Good eye.

I would think there’s money to gain by keeping your players engaged longer by having less cheaters, but I guess theres also an incentive to keep just enough cheaters that you can steadily ban them for more game sales (not that I think that’s happening, i hope not).

Anyways they take our money, we expect whats best for us, within reason of course.