I mean… if you’re running millions of sites on one box, and that itself isn’t an issue, I’d assume your port saturation/traffic is pretty low.

I don’t know anything about Netbird, but I’ll link you to my ZeroTier pitch the last time I noticed someone talking about Tailscale: https://lemmy.world/comment/1058287.

I use Bitwarden for passwords, but I think Proton Pass is an honorable mention. It’s possibly more secure, but still new.

That only stands true when the issue is not being actively exploited.

If you send these files over SSH, you’re good as that’s encrypted by ZeroTier and then encrypted again inside the SSH connection (and SSH does have perfect forward security).

See their cryptography section of their docs for more info.

You can read more here about what they’re working on:

• https://www.zerotier.com/blog/research-notes-on-2-x-cryptography/
• https://www.zerotier.com/blog/research-notes-aes-gmac-ctr-siv/

It’s been to long since I’ve read that to give anything more than a condensed “they’re improving their crypto significantly with ZeroTier 2” (not to mention memory safety via Rust).

I think it’s pretty secure and it will be getting better soon. In reality, I think it’s much more secure than what most people will end up with otherwise.

ZeroTier is open source, long running without incident, and the traffic is encrypted between peers.

The threat model is basically two fold though, in theory someone who has control of the ZeroTier roots (if you’re not using your own controller, if you’re using your own, then s/their roots/your roots/) could add routes to your devices, and add/remove devices that are part of your confirmation.

The encryption also doesn’t currently have perfect forward security, so if there’s a compromise in one of your connections, in theory some past state of that connection could be decrypted. In practice, I’m not sure this matters as traffic at a higher level for most sensitive things uses its own encryption and perfect forward security (but hey maybe you have some software that doesn’t).

The other thing I will note about that last point is that they’re working on a rust rewrite that will have updated crypto, including perfect forward security.

FOSS just means the software is open source. As I said, you can self host ZeroTier and not involve their servers (if you’re not doing things commercially, you pay for the license but still run your own controllers, or you use an older version which has been automatically relicensed by the change date to Apache 2.0).

That said, the traffic is peer-to-peer, in the majority of use cases there servers are acting as a bit more than syncthing’s servers (acting to facilitate the connection between two devices that want to talk together). See the other comment for some more thoughts here.

You got it right, lots of drama, not really anything to worry about unless you’re very fringe and have people you email via PGP with “super secure” PGP keys (and honestly I’d trust Proton more than I’d trust most people to roll their own PGP… it’s hard stuff to get PGP right).

I’ll pitch ZeroTier instead, it’s the same concept, but it’s more FOSS friendly, older, doesn’t have the non-networking “feature bloat” of Tailscale, and can handle some really niche cases like Ethernet bridging (should you ever care).

Just:

1. Go to their website, create an account, and create a network
2. Add ZeroTier to the devices you need to connect
3. Enter your network ID on those devices
4. Approve the devices in the web control panel

If you want to go full self hosting, you can do that too but you will need something with a static IP to control everything (https://docs.zerotier.com/self-hosting/network-controllers/?utm_source=ztp) this would replace the web panel parts.

You can also do a LAN routing based solution pretty easily using something like a Raspberry Pi (or really any Linux computer).

It’s really starting to feel like a legitimately good Reddit alternative around here, not just “Reddit like” or “Reddit light” and that’s really awesome 😊

After watching a hospice patient cry because (according to her) the Dr interviewed on Fox News talked about how he doesn’t do abortions anymore after performing a late term abortion where the mother went into labor and delivered the baby before he could kill it, so he cleaned up the baby and consoled it as he discussed with the parents their options on how to dispatch it after the fact. She was inconsolable. But in drinking Fox’s Kool aid, it was the only channel she would watch.

I don’t understand what happened in this story.

I think it’s hard to have a universal morality. I wouldn’t want my family forcing their moral judgements on me if the roles were reversed. e.g. I’m not a car guy, but my family members wouldn’t (even if they could) make it so it only drives to “approved” locations.

Like the other commentor said, I think it’s better to talk about these issues, though that too can be hard, I can’t say I’ve made much visible traction.

I reworded my comment to clarify (my original wording was a bit clumsy).

I don’t really think they’re a danger to others anymore than their policy positions in my option are harmful to some percentage of the population. i.e. they’re not worried about indigenous populations invading and killing people with poison arrows, but they do buy into some of the anti-establishment doctors when it comes to issues like COVID vaccination.

It’s kind of like “I don’t think you’re a great driver, but I don’t think you’re such a bad driver I should be trying to subvert your driving.” Though it’s a bit of a hard line to draw…

Yeah the morality issue is the hard part for me… I’ve been entrusted by various people in the family to help them with their technology (and by virtue of that not mess with their technology in ways they wouldn’t approve of), violating that trust to stop them from being exposed to manipulative content seems like doing the wrong thing for the right reasons.

I think it’s worth pointing out “no longer” is not a fair assessment since this is regularly an issue with older Americans.

I’m inclined to believe it was never taught in schools, and is probably more likely to be a subject teachers are increasingly likely to want to teach (i.e. if politics didn’t enter the classroom it would already be being taugh, and might be in some districts).

The older generations were given catered news their entire lives, only in the last few decades have they had to face a ton of potentially insidious information. The younger generations have had to grow up with it.

A good example is that old people regularly click malicious advertising, fall for scams, etc, they’re generally not good at applying critical thinking to a computer, where as younger people (typically though I hear this is regressing some with smartphones) know about this stuff and are used to validating their information (or at least have a better “feel” for what’s fishy).

You could checkout a very similar product, ZeroTier (Open Source Community Edition) assuming your use case is non-commercial.

… if you’re willing to use an older release, you could potentially do whatever you want as the software uses a BSL license with a change date fallback license of Apache 2.0.

I prefer ZeroTier, I’m not sure why Tailscale has taken off so much in recent years (perhaps just the cleaner UI and better marketing).

Basically this, he does a lot of good stuff, but since he does it “for views” some people hate him/think he’s “taking advantage of their situations.”

IMO, he didn’t make those situations, and he’s providing an avenue for those situations to get resolved (even if maybe someone has to get “embarrassed” by virtue of appearing as the benefactor of one of his videos – to be clear, he to my knowledge never does anything like “kiss my feat and I’ll give you a million dollars” to these people).

Kind of one of those, “there’s always going to be someone who doesn’t like you” things; if you ask me, he’s overall doing good.