I think I tried DamnSmallLinux in a VM around like 2008 or something which I thought was really cool, then I tried Fedora which I didn’t really like, then I tried Ubuntu which I really liked and still do, although I’m going to switch to Mint at some point because I prefer the idea of having a community-owned distro.

FOSS isn’t always more secure than closed-source, but it absolutely can be.

It depends on the priorities of the maintainers. It seems like Jellyfin’s maintainers might not be putting a huge emphasis on security, which is very disappointing, but they are volunteers at the end of the day.

Was it? The Switch version wasn’t, at the very least.

edit: It sounds like 1+2 had an offline mode for Steam Deck, so that’s better than completely always-online.

I won’t be installing this garbage.

No matter how good it is though, because it’s always-online, that means it’s going to go away eventually one day.

I can still play Skate 3 any time I want. If it were always-online, it might be unplayable by now.

Wait, Tony Hawk 3+4 will be always-online? That killed all my hype for that.

Fuck modern games.

Because it’s easy to accidentally run services or set up services temporarily and forget that you left them running. With UPnP being able to automatically/dynamically open ports, a firewall is just another layer of protection. You can also configure firewalls to ignore packets silently or log dropped packets, and if applications ever get new versions and end up listening on new ports, you would have to manually allow the ports. Maybe you want to have one part of an application accessible through the firewall but not another part of the application.

Plus, like you said, country blocking is another feature which personally I think is nice to have, and there are also other features too like being able to throttle connections, especially with things like fail2ban.

It’s just another layer of protection, and it ensures that everything you run is deliberate.

I edited my comment to better and more fully reflect my thoughts. It’s hard to properly express myself when I’ve been as sick as I have been with bronchitis and possible pneumonia for the past 4 weeks.

Hopefully my comment now better reflects my thoughts.

I’m mixed on it. If it is more secure/safe then that’s a good thing, but if it’s done because it’s MIT-licensed instead of GPL-licensed, then that could possibly be concerning.

It’s important to have seperate directories for unfinished torrent downloads and complete ones, and only have sonarr pick up from the completed one

Back when I used Torrents instead of Usenet for sonarr, I had only the one folder, since Plex would generally pick up the library changes automatically anyway. I’d assume that Jellyfin is similar, although I don’t use it enough to know for sure. These days I use only Usenet for sonarr/radarr since I’m paying for Usenet and it’s excellent for automation/new content, and SABnzbd provides both incomplete and complete folders by default anyway.

You should, yes. I run a firewall (I usually use ufw) on all of my Internet-connected devices, since all of my devices run Linux. There’s not really any good reason not to in 2025.

For me, my personal projects are generally MIT licensed. I generally don’t like “restrictions” on licenses, even if those “restrictions” are requiring others to provide their source and I want as many people to use my projects as possible, I don’t like to restrict who uses it, even if it’s just small/home businesses who don’t want to publish the updated source code. Although, I admit, I’m not a huge fan of large corporations potentially using my code to generate a profit and do evil things with it, but I also think that’s not going to be very common versus the amount of use others could get from it by having it using MIT who might not be able to use it otherwise with AGPL.

With that said, though, I have been starting to come around more to AGPL these days.

For what it’s worth, they have experimental Wayland support. It’s an important distinction. For example, Cinnamon has experimental Wayland support IIRC and last time I tried setting up a lock screen on my ThinkPad (you know, for security purposes, since it’s a laptop and all) I wasn’t able to get one working.