Hi everyone.
Glad to post on Lemmy for the first time.
I have an ubuntu that runs a whole jellyfin/arr/torrent docker stack and used to use it as my main work and backup server.
I decided it would be best practice to host my work data on a separate machine in case anything would ever go south virus wise.
I only download and host movies, shows and music there and its all being played through the jellyfin docker.
Am I being overly cautious? Can I even get a virus like that? Has that ever happened?
Or should I continue to separate work and entertainment?
More details on my setup: i3 12100 NVMe 500 GB hosting OS and docker files (including jellyfin cache for snappy access) 5x4TB HDD mergerfs and snapraid
Ubuntu 22 LTS Tailscale Mullvad
In the LastPass case, I believe it was a native Plex install with a remote code execution vulnerability. But still, even in a Linux container environment, I would not trust them for security isolation. Ultimately, they all share the same kernel. One misconfiguration on the container or an errant privilege escalation exploit and you’re in.