Comment on Tailscale n00b questions
irmadlad@lemmy.world 1 day ago
I don’t want to risk any data compromise at some point
What data compromise are you worried about?
- End-to-End Encryption: Tailscale utilizes WireGuard
- No Centralized Servers: Tailscale creates a direct peer-to-peer connection between devices
- Minimal Metadata: Tailscale may collect some metadata to facilitate connections, but this info does not include the content of your data.
- User-Controlled Access: You have control over which devices can connect
- Tailscale does not, and cannot inspect your traffic
I’m not the Tailscale sales person Go with whatever suites your threat model. I am just curious what data compromise you are concerned with. If it’s the metadata aspect, you already blew that away when you made the post here at Lemmy, even assuming you are using a VPN.
meschbach@piefed.social 1 day ago
Just a heads up: Headscale will use the official Tailscale DERP servers to resolve NAT traversal.
https://tailscale.com/docs/reference/derp-servers
irmadlad@lemmy.world 18 hours ago
I know you’re trying to tell me something brother, but at this moment in time, I seem more stupid than normal, so if you would, unpack that for me in relation to what I was explaining to OP about Tailscale security.