Tailscale cannot passively observe traffic. They could inject malicious keys int... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		progbits 12 days ago \| parent \| context \| favorite \| on: Stop Breaking TLS Tailscale cannot passively observe traffic. They could inject malicious keys into your config but would be hard to mask the evidence of that.

treesknees 12 days ago [–]

Would it be hard? I thought the point of tailscale was not having to manage or concern yourself with key distribution.

newdee 12 days ago | [–]

Lookup the Tailnet Lock feature.

yencabulator 11 days ago | | [–]

A feature in the client software they control, that you run as root, that auto-updates regularly?

newdee 8 days ago | | [–]

You didn’t look it up, did you?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact