I did this sort of mistakes too, luckily BTRFS snapshots are always here to save the day !

Armbian

Understood. Any public-facing server will be bombarded by bots. You need to deploy measures to avoid being hacked:

1. Firewall: lockdown everything, allow only the strict necessary
2. Remote login/SSH: update default username and pasword, only allow remote login using Encryption Key authentification
3. (Optional) configure fail2ban to slowdown the attacks
4. Keep your server up-to-date: configure auto-update, unattended-update or similare
5. Setup and keep regular backups: be ready to nuke your server at anytime, with the confidence you can restart fresh in a short time and low effort

Obviously, there are many other security steps that can be put in place, but firewall and ssh hardening are absolutely mandatory

It sounds like you made your Jellyfin server public-facing, which is probably not what you want, even though it is supposed to be secured.

I recommend that you setup access through an exclusive and private connection of some kind. E.g: VPN, Tailscale, ZeroTier.

If you can get a hold on a 3D printer, you can try this design: Raspberry Pi 4 NAS with 2x 3.5" bays / impulse1delta / printables.com

For me the most important criterias are:

• ownership: I buy, I get to download (re-download) the files and use then how ever I please
• astists get a fair share: I want to maximize the share of the money I’ve spent going to the artists, and I would like the platform to be transparent, showing me with each purchase how much goes to the artitst for creating more art (if self-hosted by the artist herself/himself, this cost is then deduced)

I personally don’t care for streaming.

Isn’t it funny how you often need to go out of your way, add extra prompts, in order to have a non-lewd result ?