←back to thread

Tailscale raises $100M

(tailscale.com)
854 points gmemstr | 4 comments | 04 May 22 13:17 UTC | HN request time: 1.018s | source
Show context
eadmund ◴[04 May 22 13:42 UTC] No.31260261[source]
> For people who believe there’s a catch — and most still do — then I don’t know how to write a blog post or hire a marketing or sales team to change their minds.

I think the catch is that (at least at the free level) one must trust an identity providers. For many companies that's probably fair enough, but for high-security companies and private individuals one absolutely cannot trust anything running outside of one's physical control. Service providers can be suborned, either legally by corrupt regimes or illegally by employees. There is no way that I would permit Google, Microsoft or GitHub (their three supported options) to gate access to my private devices.

I think that one must also trust Tailscale themselves, although I could be wrong about that.

replies(3): >>31260411 #>>31260441 #>>31260476 #
lvh ◴[04 May 22 13:54 UTC] No.31260441[source]
Tailscale will let you use any SAML or OIDC provider you like in the Enterprise plan (presumably because of the cost of supporting the long tail of nonsense IdPs will produce).

(Disclosure: I'm a (small) investor via Latacora's sibling fund, Lagomorphic.)

replies(3): >>31260700 #>>31262196 #>>31262919 #
colordrops ◴[04 May 22 16:49 UTC] No.31262919[source]
Don't you have to also trust Tailscales closed source coordinator node?
replies(1): >>31263663 #
1. wmf ◴[04 May 22 17:51 UTC] No.31263663[source]
Which also applies to Tailscale's SD-WAN and cloud VPN competitors.
replies(1): >>31263969 #
2. colordrops ◴[04 May 22 18:17 UTC] No.31263969[source]
But doesn't apply to my wireguard setup on my OPNSense installation at home.
replies(1): >>31264423 #
3. wmf ◴[04 May 22 18:56 UTC] No.31264423[source]
This is the HN disconnect: people commenting here have completely different concerns than Tailscale's actual customers.
replies(1): >>31265253 #
4. colordrops ◴[04 May 22 20:14 UTC] No.31265253{3}[source]
That is true. Sometimes we are talking about the business aspects of product-market fit, and sometimes we are talking about our own personal use of the product or domain. In this case it's both.