http-observatory VS Jellyfin

Here are a few tools you can use: https://www.zaproxy.org/ (Web app scanner) https://www.ssllabs.com/ssltest/analyze.html?d=importer.bilendo.de (SSL server test) https://github.com/santoru/shcheck (Security Header Check) https://observatory.mozilla.org/ (Content Security Policy validator)

Regular Audits: Use tools like Mozilla Observatory or Security Headers to regularly check your headers.

What's better about this vs. Mozilla Observatory.

https://developer.mozilla.org/en-US/observatory (formerly https://observatory.mozilla.org/)

Or Security Headers?

https://securityheaders.com/

Or VENOM?

https://github.com/oshp/oshp-validator

Applaud the effort, these are things that more devs should be aware of when building websites...

Hey some specific feedback on this tool... On mobile, it has a lot of "view port wobble" and the input fields aren't keyed right, it's just using a straight text input field so you don't get any ".com" buttons as you type. Small UX stuff like that annoy me more than if a page has a privacy policy setup correctly. (=

Detectify once made an offer of making free scans which I took them up on. There are plenty of free Content Security Policy (CSP) and other vulnerability checkers around such as Observatory or Pentest. Shields UP!! will identify which ports you have open.

Website Headers Analyzer (Mozilla)

scan our site with Mozilla Observatory and improve our grade by registering a domain name, enabling HTTPS, adding a certificate and setting security headers

First, for session persistence, go with the default Django session with cookie storage. Set your cookie to HTTP only and ensure your application uses the most common HTTP security headers and controls. Test your application with https://observatory.mozilla.org/ to have an idea of what you're missing.

Mozilla Observatory

That's when I turned to Jellyfin, a free, open-source media streaming solution. Paired with ngrok, I could securely share access with family and now had my very own private Netflix running directly from my Linux desktop. This was one of those side projects that started as a practical fix but turned into an unexpectedly enjoyable weekend build.

Jellyfin – media player

Love JellyFin!

I do not mind the lankiness, since I can work around a lot of it with the API.

I do not even mind too much the Love Exposure bug:

https://github.com/jellyfin/jellyfin/issues/10494

Switched from Plex to https://jellyfin.org/ without much trouble

After trying Plex, I found Jellyfin [1] to be a complete replacement when paired with a VPN for remote devices. I haven't had a single issue with a library over 2TB and thousands of files.

[1]: https://jellyfin.org/

You are not wrong. But it is still an amazing piece of software for self hosting.

My biggest gripe is the sometimes hilariously strange behavior picking artwork:

https://github.com/jellyfin/jellyfin/issues/10494

Other weird things I have been able to DIY. I wrote my own auto-updater and Live TV listing grabber.

Jellyfin is based on the Emby 3.5.2 release and ported to the .NET Core platform to provide full cross-platform support.

Jellyfin