| ▲ | phito 2 hours ago | |
I wish so too, same for all the self-hosters using tailscale... | ||
| ▲ | dns_snek an hour ago | parent | next [-] | |
Tailscale connections don't get terminated by a middle box, it's just end-to-end encrypted Wireguard under the hood. Cloud-hosted control panel is a risk because they could push malicious configuration changes to your clients (ACLs and new nodes if you're not using the lock feature), but they can't do it without leaving a trace like Cloudflare can. | ||
| ▲ | progbits an hour ago | parent | prev | next [-] | |
Tailscale cannot passively observe traffic. They could inject malicious keys into your config but would be hard to mask the evidence of that. | ||
| ▲ | kreetx 2 hours ago | parent | prev [-] | |
These are not the same thing, the parent is confused.. | ||