Just a lvl 28 guy from Finland. Full-stack web developer and Scrum Master by trade, but more into server-side programming, networking, and sysadmin stuff.

During the summer, I love trekking, camping, and going on long hiking adventures. Also somewhat of an avgeek and a huge Lego fanatic.

  • 0 Posts
  • 13 Comments
Joined 2 years ago
cake
Cake day: June 20th, 2023

help-circle


  • I see everyone in this thread recommending a VPN or reverse proxy for accessing Jellyfin from outside the LAN. While I generally agree, I don’t see a realistic risk in exposing Jellyfin directly to the internet. It supports HTTPS and certificates nowadays, so there’s no need for outside SSL termination anymore. (See Edit 2)

    In my setup, which I’ve been running for some time, I’ve port-forwarded only Jellyfin’s HTTPS port to eliminate the possibility of someone ending up on pure HTTP and sending credentials unencrypted. I’ve also changed the Jellyfin’s default port to a non-standard one to avoid basic port-scanning bots spamming login attempts. I fully understand that this falls into the security through obscurity category, but no harm in it either.

    Anyone wanna yell at me for being an idiot and doing everything wrong? I’m genuinely curious, as the sentiment online seems to be that at least a reverse proxy is almost mandatory for this kind of setup, and I’m not entirely sure why.

    Edit: Thank you everyone for your responses. While I don’t agree with everything, the new insight is appreciated.

    Edit 2: I’ve been informed that infact the support for HTTPS will be removed in a future version. From v10.11 release notes:

    Deprecation Notice: Jellyfin’s internal handling of TLS/SSL certificates and configuration in the web server will be removed in a future version. No changes to the current system have been made in 10.11, however future versions will remove the current system and instead will provide advanced instructions to configure the Kestrel webserver directly for this relatively niche usecase. We strongly advise anyone using the current TLS options to use a Reverse Proxy for TLS termination instead if at all possible, as this provides a number of benefits



  • They’re also not saying it couldn’t have happened, are they? They’re waiting for investigators to gather all the facts before making any statements, just like they should.

    Meanwhile, we here on the internet are just speculating based on the limited information available (basically just the video footage). Based on the current information we have, my opinion is that pilot error is the most likely cause.

    You’re free to disagree about the likelihood of different scenarios, but right now we have no evidence that makes the theory of the pilots accidentally retracting the flaps instead of the gear impossible or “absurd.” It’s really counterproductive to start ruling out scenarios without concrete proof.


  • I don’t get what you mean by “and no one figured that out yet.” As you said yourself, no one knows what happened yet. Pretty much all we have at this point are the videos, and all we can confirm from them is a rough flight path of the plane and that the landing gear remained down after what appeared to be a normal takeoff. I haven’t seen any footage that clearly shows the state of the flaps with any certainty, but please correct me if I’ve missed something.

    In my mind, that leaves us with three possible scenarios:

    • Pilot error (retracting the flaps instead of the landing gear)
    • Dual engine failure at the critical moment (there’s no evidence of this in the videos, but also nothing ruling it out)
    • Something else (we don’t know what we don’t know)

    From the two scenarios (pilot error, engine failure) that fit the flight path from the videos, the option one seems more plausible to me. But that’s just my armchair opinion, it doesn’t mean anything. All we can really do is wait for the investigation and the preliminary report.




  • Are the 787’s controls arranged in such a way that you could accidentally retract the flaps instead of the landing gear?

    Not in a sense that someone could just grab the wrong lever in the dark for example. The levers are in different parts of the cockpit and also shaped very differently. But we humans can do all kinds of weird mistakes that are hard to explain. Almost everyone has experienced this sometimes. Think something like searching for you phone while it’s in your hand. Afterwards it’s very hard to explain why would anyone do such a silly mistake but it still happened. This would be similar.


  • One theory circulating online is that the pilots may have accidentally retracted the flaps instead of the landing gear. Apparently that would result in kind of a flight path seen on the published videos.

    While this cannot be confirmed or ruled out with the information we have, in my opinion the available videos seem to kinda support this theory. Initially the aircraft appears to take off and climb normally, but for some reason the gear is not being retracted when usually it would be retracted right after the takeoff.

    Naturally the gear could be forgotten or left intentionally down if there were a dual engine failure right after takeoff, for example, but as the videos show no evidence of this, I’m more inclined to believe in simple pilot error.




  • I’ve been using No-IP free plan for years without issues. Inputted the credentials to my routers DDNS client and then basically forgot about it. Free users need to confirm their account once a month via email but that’s just one click.

    If your domain registrar happens to have an API to update DNS entries, you could implement DDNS yourself by writing a simple automated script to check the external IP (e.g. via ipify.org) and if it’s changed from the last check then call the API to update the DNS entries.