So paying is optional? I don’t get it…

No, it’s also vulnerable to a targeted mitm attack. Github can be unaffected and you can get a malicious version on your server.

The jellyfin repo

Jellyfin has a Debian repo. Worked fine on Debian 12 and 13.

Docker is known insecure. It doesn’t verify any layers it pulls cryptography. The devs are aware. The tickets remain open.

Why does unattended upgrades with security only setting not fix this?

This is literally why Debian has distinct repos for security updates.

Lol you shouldn’t make such assumptions when they so obviously place sefiroty last

If only they would fix the htaccess bug

Lol it’s already insecure then. Don’t bother.

Unattended upgrades set to security only and never worry

No. Just use apt. Don’t fill your house with sensors that make you vulnerable

Apt has done sig checking since 2002 iirc

Docker will happily download malicious containers. It doesn’t use cryptography to verify what it downloads during the layer pull.

Dont do this. OP built a security nightmare

Sounds like you need always on VPN with IP specific routing rules

This will work for maybe 2 years, until all the corporate kid shows lay off their writers and replace them with AI

I thought heppa filters were only 4 nines. And need to be changed at least once a year

What percent of viruses does it block?

Why is this better than a spreadsheet or my Thunderbird contacts?

This isn’t reddit. Self promotion isn’t disallowed because we don’t have ads