Right and what I was saying was even if it wasnt “public”, single party consent means the person recording can be that single party- so still a non-issue.

Most US states are single party consent. https://recordinglaw.com/united-states-recording-laws/one-party-consent-states/

Thanks!!

Yeah I’m familiar with server- I was asking if you were using official client apps or third party.

Is it called “jellyfin” like the server or is it another app?

Jellyfin have native apps that are any good? I use plex heavily on ps5, appleTV, iOS, and people’s random smart TVs, all of which have really good first class apps. I also support users that are not technically inclined, so they would need to be able to just install and app and log in.

You can’t get faster than instant- so if something is already instant, it wont improve. Also, 16GB ram isn’t exactly rocking the boat, workstations have 64-1024GB of ram these days.

If they require you to use the bastion, then trying to avoid it is probably a bad idea.

If the bastion is running an ssh server, you can jump through it with ssh pass through (using -J).

SSM provides session manager which allows you to skip having a bastion altogether- it basically lets you start an “ssh” session to a private instance without opening ports or networking using aws creds. This requires that you have access permissions to do this and that ssm is enabled.

But… if the reason you are using the bastion is so that they can inspect the traffic, then they’re not gonna let you bypass it via ssm because that also bypasses the managed networking.

Not all servers are running on the public internet.

Thereare Linux servers running that haven’t had reboots in years.

https://www.localstack.cloud/ emulates a bunch of the aws services, perfect for local testing.