Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Tailscale uses the WireGuard protocol.

About the question about Tailscale being hacked or injecting hosts in your network. With the default configuration yes. There is Tailscale lock https://tailscale.com/kb/1226/tailnet-lock In which you need to sign the devices participating in your network. The signing keys are in your device.



Thanks! How much more cumbersome does the lock make it to use Tailscale?


Not much. You first add the host and then you need to either click the link that will open the Tailscale app to sign the host or you run a command.

If you use Mullvad VPN you need to sign the Mullvad exit nodes.

Just make sure to have more than one signing device in case something happens to your main computer.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: