Plex now want to SELL your personal data
-
It's not hard to find out what's being pirated, BitTorrent isn't private.
It is when you use a private tracker and disable DHT, Local Peer Discovery and Peer Exchange.
-
UpNp or port forwarding is the same way both Plex and Jellyfin work.
I don't know what makes Jellyfin less secure since they both work the same way for this as far as I can tell...
Can you be more specific about what makes Jellyfin less secure when it comes to UpNp/port forwarding?
In the case of port forwarding at least Jellyfin is open source and has more eyes on it so it's less likely for someone to zero day it and have at it unless I have misunderstood how each can connect off-network.
Furthermore the hash for your password is stored along with many others at a single (or relatively few) attack point/s on a Plex business server since it's a centralized business whereas this is never the case for Jellyfin.
Also this thread is about Plex literally selling your personal data so I don't really consider Jellyfin worse for exposing your personal data.
I'll take my chances with a single idiot who want's to compromise my poor asses tiny network versus an actual hacker who wants to compromise an enterprise businesses network that is storing thousands or hundreds of thousands of user credentials, data, and payment information (Which Jellyfin doesn't store even half of).
If someone hacks Jellyfin on my network -> They have my... media files? Maybe the hash of the one password I use there?
If somone hacks Plex on my network or anywhere - or the people they sold that data to -> They have my password hash, credit card number and probably my name that is associated to it, personal data that Plex is selling, etc.
TL:DR I think Plex is more likely to be hacked rather than myself and the outcome of Plex getting hacked is worse than if my personal Jellyfin server gets hacked.
With a fresh install of Plex you can still connect to it remotely…with no ports open. It will use Plex’s relay service to make the connection. That has limited bandwidth so it’s rarely anybody’s long term choice but it works right out of the box.
If you do choose to open a port then Plex partnered with Let’s Encrypt and Digicert to setup and maintain all the certs for you. So at least your connections are encrypted provided you use one of the many apps that support secure connections.
Is that the most secure way to run Plex? No. But it’s a couple steps in the right direction for basically zero effort on the server admin and users part.
You might not like the centralized auth of Plex but I don’t have to manage user accounts/passwords for people and deal with distributing them. Just send an invite to their email, they set it all up, and I never need to know about it. They forgot a password?…I never need to know about it.
-
I think people feel loyalty to Plex and I understand why. I even understand why they're charging for self-hosting considering their costs of delivering the dynamic DNS, software development, content info, etc. But being closed source, VC funded, and with their core product an increasingly small part of their business, it's all a powerful recipe for enshittification. Tech Altar has talked before about how enthusiast brands often betray their users. Jellyfin was not a trivial set up for remote access, but I've really been happy with it, and I like having the peace of mind of having control over how it works
wrote last edited by [email protected]I got concerned when people started buying Plex hats. And being excited about that purchase.
I noticed that Logo on Hats people who are willing to pay for them is often a bit concerning.
-
This is specifically related to watching their free content. You can opt out of the sale & sharing of said data, which is used to play you targeted ads when watching their free content. I am not a big fan, but this is the typical "free" TV spiel. Was there something that changed recently or is it just being recognized now?
It's the recent "We all hate Plex now" because they implemented a price in regards to the way we access content remotely because it was costing them too much to maintain for free. So anything that smells even remotely like they are trying to make money is getting the shocked and dismayed reaction. Usually followed by a dozen or so people talking about how they've ditch Plex ages ago for a truly free platform like jellyfin/Kodi/etc.
-
Jellyfin is hardly a no-brainer. I set it up out of curiosity a few weeks ago and my first question was how do I give access to my friends and family. So I searched, and all of the results were talking about setting up a VPN or a reverse proxy or whatever. Man, I just want to tell my mom "install this app on your tv and log in", which is exactly what Plex does.
I get that Plex is enshittifying, but pretending Jellyfin is a drop-in replacement is delusional.
“install this app on your tv and log in”, which is exactly what Plex does
Yes, but that person has to create an account. Everyone has to create an account. With Plex. Some people I know immediately say no, others are annoyed that plex would try and shake them down for money.
If you configure Jellyfin, all that goes away. THEN they can simply download the app and login.
-
I'm not a hardcore tech person and this is exactly the issue for me as well.
I want to be able to stream my music collection when I'm away from home without having to get an associate's degree in networking.
wrote last edited by [email protected]Tailscale makes this easy if you are the only user.
-
Seeing the replies in this thread it kinda makes me wonder what Plex actually has to do for these zealots to quit using their platform.
Like do they literally have to steal naked pictures of you and pass them around the office? Like wtf.
My guess when the MPA buys plex data and they have what movies everyone has on their servers.
-
I think people feel loyalty to Plex and I understand why. I even understand why they're charging for self-hosting considering their costs of delivering the dynamic DNS, software development, content info, etc. But being closed source, VC funded, and with their core product an increasingly small part of their business, it's all a powerful recipe for enshittification. Tech Altar has talked before about how enthusiast brands often betray their users. Jellyfin was not a trivial set up for remote access, but I've really been happy with it, and I like having the peace of mind of having control over how it works
It was easy considering I was already using custom domain for Plex.
-
Been with 2 providers this year and neither have been behind CGNAT.
-
Can someone clue me in on the reason why anyone would prefer Plex instead of Jellyfin?
Sunk cost. It took me loosing my Plex watch history to say fuck it I'm going to Jellyfin.
-
content being watched) on my device(s) and share that information with Plex’s advertising partners
That is a honey pot rights holders will be falling over themselves to pay Plex for access to once they hear about it.
Been telling anyone that would listen that they need to get out of Plex since they implemented that first iteration of trying to require you to sign into your own self hosted server with a Plex.tv account. They were telegraphing what direction they were going in with that kind of user hostile move.
Lots of responses about how it was easy to get around so no big deal (or worse that they liked it for some coping mechanism reason) and that nothing else was as easy and feature rich as Plex so it was worth it.
Well now a few years down the road from that they are now going to use that beach head on everyone's Plex server they can to collect what is being watched and sell it to the highest bidder.
Yep I see this as the end game of Plex MPA purchases the data and goes after people.
-
I feel like I know the answer but what happens if you click "I do not agree"?
Like all companies complying with European data collection laws, they can't collect your data and have to delete anything they have collected.
-
Aww come on guys, my JF boner can only handle so much /s
Seriously though, why did they even give you the option to disagree, you know they're just going to force it 3-6 months.
They legally can't for European users
-
Jellyfin is hardly a no-brainer. I set it up out of curiosity a few weeks ago and my first question was how do I give access to my friends and family. So I searched, and all of the results were talking about setting up a VPN or a reverse proxy or whatever. Man, I just want to tell my mom "install this app on your tv and log in", which is exactly what Plex does.
I get that Plex is enshittifying, but pretending Jellyfin is a drop-in replacement is delusional.
So I told people download app enter this url and login. I even send out an email inviting them so they can click the link and create their own username and password. Then if they forget their password they can ask for a reset link.
-
Text:
I consent to Plex to: (i) sell certain personal information (hashed emails, advertising identifiers) to third-parties for advertising and marketing purposes; and (ii) store and/or access certain personal information (advertising identifiers, IP address, content being watched) on my device(s) and share that information with Plex’s advertising partners. This data is used to deliver personalised ads and content, ad and content measurement, audience insights and product development. Your consent applies to all devices on which you have Plex installed. You can withdraw your consent at any time in
Account Settings or using this page.Soure: https://www.plex.tv/vendors/
(Might have to clear cache)Can also read about the changes here:
https://www.plex.tv/about/privacy-legal/Even if you can mental gymnastics into believing this won't affect you, we know that's the way Plex is going. How long until it does?
-
You’re in a post about people outraged about an opt-in anonymous data sharing option on Plex, and you’re not worried about known security issues because you haven’t heard of anything bad happening yet?
Make it make sense.
I don't care if they probe for my media considering I block 99% of the world. Yes blah blah they could get around it. If someone really wants to see what I have on my media server that bad, I don't think I'd be able to stop them anyway.
-
Text:
I consent to Plex to: (i) sell certain personal information (hashed emails, advertising identifiers) to third-parties for advertising and marketing purposes; and (ii) store and/or access certain personal information (advertising identifiers, IP address, content being watched) on my device(s) and share that information with Plex’s advertising partners. This data is used to deliver personalised ads and content, ad and content measurement, audience insights and product development. Your consent applies to all devices on which you have Plex installed. You can withdraw your consent at any time in
Account Settings or using this page.Soure: https://www.plex.tv/vendors/
(Might have to clear cache)Can also read about the changes here:
https://www.plex.tv/about/privacy-legal/For those who aren't quite ready to delete their accounts get, this link buried on their privacy page can let you opt out: https://www.plex.tv/vendors-us
Not sure why "us" is in the URL, I'm in Canada
-
I’ve had a lifetime plex pass for several years. Once I tried Jellyfin a few months ago it was all over. My “I’ll run both just in case” period lasted a week or two.
The downside is that Jellyfin will take more setup on your end, especially if you want to let other people connect securely to your server.
The upside is performance and responsiveness. Once I started using it I decided Plex had to go, even if I have to drive to each family member’s house to fix their shit. It was like moving between Linux and Windows, as far as one being designed to work and the other being designed to satisfy dozens of corporate KPIs.
Fortunately the setup for the end user is just as simple once your server is good to go. They just need URL, login, and password.
And since it’s all open source, there’s some fun diversity in clients. I use Finamp specifically for music, and there are audiobook focused ones.
Also a lifetime Plex holder. Plex wouldn't let me watch my local content without authenticating the other day... But my internet went out and I couldn't. Decided I'd swap to Jellyfin the first chance I could (couldn't that day because no internet)... So that's what I did today. It was painless and I'm never going back to Plex.
Disclaimer, I don't need access outside of my house so I didn't set any of the remote stuff up.
-
This is specifically related to watching their free content. You can opt out of the sale & sharing of said data, which is used to play you targeted ads when watching their free content. I am not a big fan, but this is the typical "free" TV spiel. Was there something that changed recently or is it just being recognized now?
I have actually never considered watching Plex's free shows.
If I did see something I liked, I'd probably 'acquire' it and put it in my own library.
-
For those who aren't quite ready to delete their accounts get, this link buried on their privacy page can let you opt out: https://www.plex.tv/vendors-us
Not sure why "us" is in the URL, I'm in Canada
That was very helpful. Thanks!
