We have recently experienced a security incident that may potentially involve your Plex account information. We believe the actual impact of this incident is limited; however, action is required from you to ensure your account remains secure. What happened An unauthorized third party accessed a limited subset of customer data from one of our databases. While we quickly contained the incident, information that was accessed included emails, usernames, securely hashed passwords and authentication ...
Because you are hosting the server software on your own hardware. That’s literally self-hosting. Plex provides a way to remotely access your server through their own network as well, which is optional.
The problem with Plex is it isn’t fully hosted. Plex controls user passwords. You can’t use it without logging into their servers.
You can access it through your local network without authentication. Add a vpn and you got the same setup Jellyfin fans will praise
On a side note: you can remotely access any service running on home network via Tailscale[1] / Cloudflare Tunnel. Your services are never exposed on Internet. Moreover, you don’t need to rely on Plex for that.
[1] https://tailscale.com/ [2] https://developers.cloudflare.com/cloudflare-one/connections/connect-networks/
Tailscale is going public, so I don’t really trust them anymore. I used Cloudflare tunnels for a while, but I strongly dislike being dependent on them for accessing my own network, and I don’t like how they recently clamped down on “anti-piracy”. There are some legitimate sites I still can’t access (dirtbike parts and whatnot) because Cloudflare straight up blocks access to them.
Even if the source code is open?
Android is open source and look what Google is trying to do with that.