Who could have foreseen that letting game companies into the kernel would cause problems?
Frezik
- 0 Posts
- 9 Comments
Joined 2 months ago
Cake day: June 24th, 2025
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
1·13 days agoDynamic DNS is the usual way. Your ISP assigns the IP, so they’re the only ones who can make it static.
You might be able to do it with some VPN shenanigans, but generally dynamic DNS is what you want. It’s basically a script that runs on your server that will periodically update the IP on the DNS entries.
1·22 days agoMiner Wars 2081 has similarities. Same people who made Space Engineers.
8·25 days agoI wish that was real. I’d buy stock in every popcorn manufacturer, because it’d be such a shit show.
Given how much that story had Trump specifically in mind, that’s not a surprise.
Specifically these issues: https://github.com/jellyfin/jellyfin/issues/5415
The big one is that video/audio playing endpoints can be used without authentication. However, you have to guess a UUID. If Jellyfin is using UUIDv4 (fully random), then this shouldn’t be an issue; the search space is too big. However, many of the other types of UUIDs could hypothetically be enumerated through brute force. I’m not sure what Jellyfin uses for UUIDs.
Nah, setting non-standard ports is sound advice in security circles.
People misunderstand the “no security through obscurity” phrase. If you build security as a chain, where the chain is only as good as the weakest link, then it’s bad. But if you build security in layers, like a castle, then it can only help. It’s OK for a layer to be weak when there are other layers behind it.
Even better, non-standard ports will make 99% of threats go away. They automate scans that are just looking for anything they can break. If they don’t see the open ports, they move on. Won’t stop a determined attacker, of course, but that’s what other layers are for.
As long as there’s real security otherwise (TLS, good passwords, etc), it’s fine.
If anyone says “that’s a false sense of security”, ignore them. They’ve replaced thinking with a cliche.
And it’s not like the companies will update old stuff, either. They’ve shown a willingness to forget about old games as soon as the revenue dips too much. The result will be that those games will be unplayable in the future.