I’m not sure if this is the end of Plex for me, but it really feels that way.
I just updated my server and now i’m **forced **to login with every single device in my local network. Yeah, of course…the developers don’t quit telling us it’s just “helping”. But it isn’t. It’s the opposite. Here’s why:
Until now, all services just ran absolutely fabulous without ever logging in
There is no “security” issue when using Plex in local network only
With users forced to be logged in, the developers can track the hell out of us:
What movies the users watch
What music do they hear
What films and music are on their HDs
How many devices can be found in their household
For these information **alone **companies will pay for incredible amounts of money. Because they can be tracked per unique user-ID. These IDs can be sold even with a corresponding email adress. But that’s not all:
Even photos of the users can be remotely accessed and therefore be sold. Providing a huge opportunity who’s EXACTLY behind any user ID.
Photos even provide the way of living and money capacities
With embedded GPS watermarks they can even provide the precise coordinates of the user’s home
I could go on and on and on with that list. Just one sentence to you developers: shut off that forced login. I don’t see any advantage for us users. I just see advantages for YOU. And in times like these i don’t want YOU to have THAT power regarding my personal intimacy. If you don’t understand the urgency in overhauling the forced login, this issue should be discussed with a wider range of publicity: Especially what laws of Data Protection and Freedom of Information are violated globally.
I have gone back to a previous version of plex for now, and if plex doesn’t change I might take up xbmc. I am very angry about this. Surely plex is less secure if you have to have a port open to the world. It is more secure where you don’t have to log in and you have a firewall. I am also angry about the 3 hours I spent trying to work out what was wrong with my network, until I realised it was plex causing me the problem.
@Gekko23 said:
I’m not sure if this is the end of Plex for me, but it really feels that way.
I just updated my server and now i’m **forced **to login with every single device in my local network. Yeah, of course…the developers don’t quit telling us it’s just “helping”. But it isn’t. It’s the opposite. Here’s why:
Until now, all services just ran absolutely fabulous without ever logging in
There is no “security” issue when using Plex in local network only
With users forced to be logged in, the developers can track the hell out of us:
What movies the users watch
What music do they hear
What films and music are on their HDs
How many devices can be found in their household
For these information **alone **companies will pay for incredible amounts of money. Because they can be tracked per unique user-ID. These IDs can be sold even with a corresponding email adress. But that’s not all:
Even photos of the users can be remotely accessed and therefore be sold. Providing a huge opportunity who’s EXACTLY behind any user ID.
Photos even provide the way of living and money capacities
With embedded GPS watermarks they can even provide the precise coordinates of the user’s home
I could go on and on and on with that list. Just one sentence to you developers: shut off that forced login. I don’t see any advantage for us users. I just see advantages for YOU. And in times like these i don’t want YOU to have THAT power regarding my personal intimacy. If you don’t understand the urgency in overhauling the forced login, this issue should be discussed with a wider range of publicity: Especially what laws of Data Protection and Freedom of Information are violated globally.
Answers
No, plex doesnt keep track of that, that is kept in your local database only.
No, plex doesnt keep track of that, that is kept in your local database only.
No, plex doesnt keep track of that, that is kept in your local database only.
5 No, plex doesnt keep track of that, that is kept in your local server only.
6 Etc
7 Etc
I could too go on and on.
Now to answer your question about the forced login, I understand that may be frustrating for you, and I will send your concerns on up the chain.
If there is a global law throughout mankind’s history, then it would be this:
“If there is the opportunity to make huge amounts of money with a doubtful, unethical business: someone WILL, no matter how.”
We have the option to turn off our firewall. It is silly to do so, but we have that option. It is our choice. Please just give us one little switch in the settings to turn this feature off or on. Let it be our choice. My LAN is secure. I don’t need the nanny state telling me how to secure my own network.
Keep in mind that clients talk to your server directly. No information i sent to plex.tv regarding your actual media. Also note that by logging your clients into Plex.tv, they will be able to communicate with your server using a secured connection. This means, Plex couldn’t find out what you are watching even if we wanted to. By not logging in, the client communicates to your server through plain text. That means any person within range of your WiFi could capture all the packets and examine the results. There is a higher chance your neighbor would know more about what you watch. #4 in your list is the only thing that would be true.
If there is a global law throughout mankind’s history, then it would be this:
“If there is the opportunity to make huge amounts of money with a doubtful, unethical business: someone WILL, no matter how.”
@asimov500 said:
We have the option to turn off our firewall. It is silly to do so, but we have that option. It is our choice. Please just give us one little switch in the settings to turn this feature off or on. Let it be our choice. My LAN is secure. I don’t need the nanny state telling me how to secure my own network.
why not read the release note for the latest version i linked. if you don’t want to sign in players but for some reason will sign into server then just enter the local ip of the players there. if that is not working then let us know.
Is it so difficult to give users the opportunity to decide if they want to use this feature or not?
Why can’t I decide by myself if my local network is secure? (for example the wlan is in a different subnet)
Why not give us an option in the settings in which we can “disable” this forced-login?
Do not pander to people like this or even pretend to. You can just stay on old versions if your so worried about your security or use wireshark and watch your traffic. The truth is no one cares about what your doing and your paranoia just makes everyone wonder what your trying to hide in the first place.
How is it “forced”? I just had to add the IP Adresses of my local clients to -> Settings > Server > Network > List of IP addresses and networks that are allowed without auth. and it still works just fine.
@ewmessenger said:
Do not pander to people like this or even pretend to. You can just stay on old versions if your so worried about your security or use wireshark and watch your traffic. The truth is no one cares about what your doing and your paranoia just makes everyone wonder what your trying to hide in the first place.
Agreed. This person is probably paranoid about a lot of things. Plex have zero interest in what media we own or where it came from. The user probably doesn’t even have enough technical prowess to watch traffic using wireshark, just regurgitating nonsense drawn through paranoia. I’ve never laughed so hard at an opening post before.
@danjames92 said:
Agreed. This person is probably paranoid about a lot of things. Plex have zero interest in what media we own or where it came from. The user probably doesn’t even have enough technical prowess to watch traffic using wireshark, just regurgitating nonsense drawn through paranoia. I’ve never laughed so hard at an opening post before.
It’s always the same. Any attempt to secure privacy will end up in false accusations just because you DARE to fight for your rights. I must disappoint you: all i want to hide is my privacy. Equating a skeptical view with paranoia is just proof for frugal thinking. Even more frugal minded is the stoical ignorance of technical possibilities. No wireshark bloat talk needed. These possibilities could be used by anyone with access to usernames/passwords…And because there have been too few people being skeptical in the past, there are now dozens of possibilities to get access to data like this. Better wireshark yourself to bed, dude…you don’t seem to know the right tools. And remember: in most of the latest cases of data driven abuse it have been individuals who went unethical, not companies.
You will see: PRIVACY is a currency here. A currency that most countries in the world refuse to fight for. And you can’t imagine how hard i laugh about people that let industries do what they want because of simple minded naivety. So, just go on and throw words like paranoia at me. Fair enough. But i WILL fight for my privacy rights nevertheless. Our laws are explicit. And easy to file a suit for.
Totally with you on the Privacy front. People don’t realize for the most part they are treating their privacy like driving at highway speeds without a seat belt. I don’t wear a seat belt because I know I will get into an accident, I’m careful just in case. Privacy is kind of the same way. You aren’t really worried about it until someone takes it away from you. These days, once lost, it’s really hard to get it back.
That said, I didn’t even notice this was thing. I had already added my local network with a /24 when I saw the option. I don’t need to sign in much.
Lastly, I don’t think it’s paranoid at all to imagine Plex, inc or whatever datamining their users. I already block 3 google analytics hits on my internal Plex page with adblock. Like, why is that even there? It’s not a huge jump of logic to believe someone at Plex HQ had the conversation about monetizing their users data. It’d be naive for them not to have at least talked about it.
Seriously Plex team, if you guys do not remove the forced login (or at least the ability to remove this login setting from the default to no login required) then I am going to move away from plex. I do not have the inclination to explain my setup to you but it does not work over a period of weeks no matter what I do. Constantly reminded to login from almost all of my 12 devices which connect to the plex server via web.
Every single one of my friends hate being forced to login to access their own media via web as well. In case you don’t know, you are making a BAD name for yourself making this forced login change as people do not want to have to look through code to ensure that you are doing what you are say you are (not pulling personal stats etc).
Sure we can stay on the old version but then we might as well go to another streaming server software.
Yeah Hi! So I created an account, just to come on here and say a big FVCK YOU to plex before I stop using it permanently. lol fecking twats ain’t getting my usage any more.
Yea, well, you had to sign in so every government agency, dark-web database and identity-theft-ring now has your number - so… while you were raging at the machine, the machine stuck a bug down your underpants.
Ur crazy, the government has malware in the firmware of every communication company. They don’t give a shlt about plex. Plex is just making a mistake by selling out.
