In todays episode of “Plex enshittifies” Plex employee breaks ToS.
Source: https://forums.plex.tv/t/fake-reviews-on-play-store-by-plex-staff/917736
You must log in or register to comment.
Well this thread is an absolute shitshow.
Jellyfin is great, but if you refuse to let yourself understand that Plex’s ease of setup for remote access is a point in its favour - especially when sharing with non-tech savvy people - then you’re just as bad as the supposed “Plex shills”.
Plex is well on the enshittification train, and I’ve always been a bit concerned about how private it may or may not be, but there’s absolutely no way I’d have been able to share a Jellyfin instance with my grandfather, especially as his dementia got worse.
I tried jellyfin but it isn’t even close to as a good as plex
Emby’s better than both, but jellyfin folks are probably going to crucify me for saying that.
jellyfin was a fork of emby anyway, its core framework is solid.
Emby has more of the plex-like polish, but it is more closed source than I would prefer to trust with my media, so I get by with Jellyfin. It works more than well enough fro my in-home media streaming and I still run plex for my remote users as I bought a plex pass way back at the start and I’m going to use it until I simply cant anymore… which seems to be rapidly approaching.
Can’t say me remote entry isnt working. Was streaming it from my phone in the firefox and chrome browser while on the go and also from my work pc.
Can’t imagine how easier one wants it to be in comparison (it’s literally like navigating to Youtube).Samsung TVs have a Plex app, but not a Jellyfin one. Lots of people have Samsung TVs. I mean lots. Other modern TVs are likely the same, like Onn (at least the Roku TVs) last time I checked, and again they are all over. The ease-of-use factor really is a huge win for Plex.
Edit: Yes, Samsung Tizen models can try and sideload an app, but that’s not something the vast majority of people are ever going to even think about, let alone figure out how to accomplish.
Edit 2: Well shiver me timbers, Jellyfin’s on those Onn TV’s. TIL.
I believe the AndroidTV client is the only really actively developed client.
Always funny how anyone is crucified (on Lemmy) for using Windows or (how dare you) paid and/or free proprietary software.
Yet when it comes to something like Plex they always backpedal and either state that they don’t have something like that or it’s so convenient.
If one goes on a (F)OSS crusade at least be consistent… >:(
How so?
Yo dad, heres the login:
username: dad
password: Pa$$TheP0pIf it asks for a URL on the first screen input the following URL:
https://jellyfin.domain.tld/If you (or a relative) can’t manage that, I’d be afraid to even let you handle a car or open a bank account.
Can’t imagine you relative doesnt also have to create a plex account somewhere to then be invited to the plex share or input the URL to request access.
Leaving this completely unrelated link to a better alternative here: https://jellyfin.org/
Leaving this for people to realize that there’s a literal chapter’s worth of book of security issues that haven’t been fixed and seems to keep getting the can kicked down the road… for over 4 years now.
https://github.com/jellyfin/jellyfin/issues/5415
I love Jellyfin… people need to implement it sensibly knowing the potential risks.
Edit: Ah yes! I MUST be a shill for saying “Implement it sensibly”.
Here, let me “de-shill” myself.
You have several options to make Jellyfin serviceable to users outside of your literal LAN network.
- setup a VPN. Pray you don’t have a user on a device that doesn’t have a VPN app that you can work with.
- setup whitelisting on your server. Pray that IP addresses don’t change.
- setup fail2ban or crowdsec. Pray that you users don’t piss off either by doing user things and getting locked out.
If anything above fails… you’re likely on the hook for support. Hope you plan for that!
- Obfuscate your paths (change
/movies/title (year)/title.extto something like/9ZHBrvNH4dKQDYFa2parH32qqSFpjsWTataVkjy4NqPxpVktT55PkEee5YSVRvUQ/movies/title (year)/title.ext). MD5 is now much harder to generate/guess… pray that there isn’t some other vulnerability. Gotta go back and reconfigure and organize your shit. Oh and make sure that your docker mounts aren’t crushing the path!
Am I still a Plex shill? BTW I run Jellyfin AND Plex. Literally side by side. Different uses for different cases because Jellyfin just can’t compete with Plex for sharing with dumb-ass relatives.
If your use case is to have a nice media sever at home and while traveling (via tailscale or similar) without exposing your private data, Jellyfin is great.
If your use case is running a pirate tv service for other people, then you probably want something else.
If you’re support ANYONE other than yourself who isn’t technical, it’s a hurdle. And likely a significant one.
I would not be able to educate my wife properly on the times when she would need to enable wireguard on her phone to use it properly (and when to disable it for other scenarios).
This has nothing to do with running a pirate service.
My wife has no problem starting the tailscale app and then starting the jelkyfin app. Its really that simple.
She also uses the tailscale exit node I run whenever she is on a public wifi. Its really a well designed simple to use app.
Would you like to explain to my MIL about how to set up tailscale for her entire network so she can stream to her TV?
Download file from Google Drive link
Download OpenVPN app
Pick file in OpenVPN app
Enter password
Share WiFi from phone to TV
Done
Edit: idk why ppl are downvoting. This shit is the easiest way, not the best way
Too hard, she can’t even open a PDF file on her own.
Imagine downvoting “Be careful what you expose to the internet”. I thought I’d got away from Reddit.
The core message is (to me) fine.
What I kind of dislike is the delivery.Btw: Can someone tell me why the path-guessing is so dangerous?
I don’t care if someone can guess the path forthe.rise.of.the.linux.ISO.720p.DD.H264.mp4and wants to download it.
Not like any damage or (interactive) intrusion was made into my networkBtw: Can someone tell me why he path-guessing is so dangerous?
Cause organizations like Sony have already done things like installed rootkits on people’s computer. Now imagine they realize this is a flaw in some media setups the their legal departments start actioning on it. (generate a rainbow table of common names for files, and common paths used in linux/docker containers… running 10000 http requests on a server over a few minutes is child’s play)
All it takes it one thing to parse on a list that never had a physical release and now your whole server will be subject to discovery at the court case.
If you have literally no illegal content on your server, no problem… other than that you’ll be on the hook to provide proof of rights to have the content… and possibly at worst rights to distribute (they accessed it without authentication, so literally anyone else could have too).
Edit: Oh but hold on! I hear you say that it would be illegal for them to scan your computer like that…
Except it isn’t. There’s no law that says you can’t try to navigate to a URL. There are laws that say that you can’t bypass attempts to authenticate/protect content… but remember the endpoint isn’t behind authentication.
Except it isn’t. There’s no law that says you can’t try to navigate to a URL. There are laws that say that you can’t bypass attempts to authenticate/protect content… but remember the endpoint isn’t behind authentication.
Assuming I am from the US?
Because if so, it doesn’t applyBut I appreciate your time for the explanation.
