Most active commenters
  • tptacek(3)

←back to thread

Tailscale has raised $160M

(tailscale.com)
655 points louis-paul | 28 comments | 08 Apr 25 10:36 UTC | HN request time: 1.033s | source | bottom
Show context
geenat ◴[08 Apr 25 17:36 UTC] No.43624362[source]
IMHO they should be a good steward and toss the Wireguard guy a mil considering Tailscale is pretty much Wireguard with a GUI on top.
replies(5): >>43624486 #>>43624493 #>>43624614 #>>43624907 #>>43626644 #
1. aborsy ◴[08 Apr 25 17:46 UTC] No.43624493[source]
This is not correct. Wireguard establishes a tunnel between peer A and B, and its simplicity stops there. Tailscale does tons of complex networking, filtering, nat traversal, DNS, file sharing, etc. Wireguard is a small part of the codebase today, which has grown a lot.

It’s a bit like saying Dropbox is just a GUI on top of TLS.

replies(4): >>43624594 #>>43624613 #>>43624623 #>>43624826 #
2. homebrewer ◴[08 Apr 25 17:55 UTC] No.43624613[source]
Most of this was successfully done 20 years ago by tinc, which is a project written by a couple of European guys in their free time. It even supports routing traffic through other peers and does peer discovery just like BitTorrent (but before BitTorrent even existed) — there is no need for a central server.

What tailscale has over it is hype, lots and lots of hype. Also a much more well thought out, and arguably more secure VPN protocol underneath, which is why GP's comment is on point.

replies(3): >>43624715 #>>43625031 #>>43626239 #
3. aqfamnzc ◴[08 Apr 25 17:56 UTC] No.43624623[source]
> It’s a bit like saying Dropbox is just a GUI on top of TLS.

Well, it is. After all, for a Linux user, you can already build such a system yourself quite trivially...

replies(3): >>43624752 #>>43624929 #>>43625339 #
4. RealityVoid ◴[08 Apr 25 18:05 UTC] No.43624715[source]
And ease of use, IMHO. That's a bit one with these kind of things. I will admit not having used tinc but I imagine it's not as polished.

Polish costs effort and money and it also really truly saves time and makes for a better product. So that matters.

replies(1): >>43624913 #
5. eddieroger ◴[08 Apr 25 18:07 UTC] No.43624752[source]
It'll be a sad day when this reference is posted and understood for the last time.
replies(3): >>43624995 #>>43625020 #>>43625205 #
6. agentdrek ◴[08 Apr 25 18:16 UTC] No.43624826[source]
Probably closer to say that Dropbox is a GUI on top of WebDAV
replies(1): >>43626242 #
7. mikepurvis ◴[08 Apr 25 18:24 UTC] No.43624913{3}[source]
It definitely matters. I used tinc extensively at a prior gig, and it not having a story for its own key distribution was exceedingly painful.
8. dmit ◴[08 Apr 25 18:24 UTC] No.43624929[source]
A weekend project tops
9. tptacek ◴[08 Apr 25 18:29 UTC] No.43624995{3}[source]
No it won't. The reference is universally misunderstood.

https://hn.algolia.com/?dateRange=all&page=0&prefix=false&qu...

replies(3): >>43625215 #>>43625342 #>>43637285 #
10. swyx ◴[08 Apr 25 18:31 UTC] No.43625020{3}[source]
a fun thought exercise - what would have to happen to HN for this to come true? basically all the old guard have to age out and not pass on the reference?
replies(1): >>43625061 #
11. tptacek ◴[08 Apr 25 18:32 UTC] No.43625031[source]
If it's hype, it's not hype the way you're thinking. I've shown Tailscale to a lot of people (this is less salient now, when pretty much everybody uses Tailscale) and the most common reaction I've gotten is "holy shit". It is spooky simple to get working, and it's spooky simple to go from a working installation to a VPN configuration that would take many many hours to replicate with pre-existing tools.

There may be VPN nerds out there who think there's nothing special happening with Tailscale, but I submit those nerds haven't spent a lot of time dealing with the median, replacement-level VPN configuration prior to Tailscale. I'm a pentester, and so I have had that pleasure. Tailscale is revolutionary compared to what it replaced.

replies(2): >>43625349 #>>43625937 #
12. dmit ◴[08 Apr 25 18:34 UTC] No.43625061{4}[source]
Ea-Nasir

Us humans are kinda ok at preserving knowledge (and we're getting even better, but not in a good way).

replies(1): >>43625646 #
13. scarface_74 ◴[08 Apr 25 18:47 UTC] No.43625205{3}[source]
How many people on HN today would get the structure - “less $x than $y. No $z. Lame”?
replies(1): >>43626646 #
14. johnmaguire ◴[08 Apr 25 18:47 UTC] No.43625215{4}[source]
I think the parent commenter used "understood" to mean "recognized."

That said, I don't really understand the supposed misunderstanding you point out. It seems that dang argues that "the exchange was pleasant and successful." I've never seen someone claim otherwise.

Rather, I've seen it used as an example of how technical users can fail to recognize the complexity inherent in their workflows, and therefore may also fail to see the real-world business value in creating (and selling) simpler interfaces. See also a SMOP: https://en.wikipedia.org/wiki/Small_matter_of_programming

replies(1): >>43625409 #
15. freedomben ◴[08 Apr 25 19:00 UTC] No.43625339[source]
Isn't Dropbox just a GUI on top of rsync? I've also seen people say "FTP"
replies(1): >>43626130 #
16. ◴[08 Apr 25 19:00 UTC] No.43625342{4}[source]
17. formerly_proven ◴[08 Apr 25 19:00 UTC] No.43625349{3}[source]
My only technical complaint with Tailscale is that its hole punching doesn't seem to work with some common CGNATs/double NATs when both endpoints are using them, and then traffic ends up trickling through their public proxy servers, while running your own is kinda annoying and not recommended or documented.
replies(1): >>43626828 #
18. tptacek ◴[08 Apr 25 19:06 UTC] No.43625409{5}[source]
No, it's not that simple. This is an instance of context collapse; people dunk on that exchange because they believe it's an HN person belittling Dropbox as a product, when in fact it was an HN person helpfully offering notes on a YC application.
replies(2): >>43625444 #>>43626673 #
19. johnmaguire ◴[08 Apr 25 19:11 UTC] No.43625444{6}[source]
Whether the poster was "belittling Dropbox as a product" or "helpfully offering notes" seems like a judgment one can make about the exchange, regardless of poster's intent. I never understood this to be the reason it was referenced, more the SMOP thing. But I hear what you're saying about the details getting warped over time. (edit: And I do think people sometimes use it as a case of "if you listen to everyone's feedback..." but I think that still rings true: regardless of the judgment you place on it, it could have been demoralizing to Dropbox's founders.)
20. swyx ◴[08 Apr 25 19:34 UTC] No.43625646{5}[source]
brb destroying some magnetic tapes because i can just put them on the cloud
21. candiddevmike ◴[08 Apr 25 20:07 UTC] No.43625937{3}[source]
Because you're delegating the control plane to Tailscale. Somehow we went decades without this being a thing for security reasons, dealt with the management of VPN appliances, and now suddenly everyone is OK with Tailscale owning the control plane of their VPN for the sake of convenience.
replies(2): >>43626093 #>>43628530 #
22. incanus77 ◴[08 Apr 25 20:29 UTC] No.43626130{3}[source]
Yeah, the same way a car is just a GUI on top of two bikes.
23. romanhn ◴[08 Apr 25 21:28 UTC] No.43626646{4}[source]
Here's the source for those not familiar with the classic: https://slashdot.org/story/21026. Can't believe it's turning 25 next year.
24. ◴[08 Apr 25 21:29 UTC] No.43626658{5}[source]
25. fngjdflmdflg ◴[08 Apr 25 21:31 UTC] No.43626673{6}[source]
They dunk on it because the author didn't see the the benefit of the product over using FTP. And it's hard to say the usage of "quite trivially" isn't "belittling" in some form, although I don't think using a loaded word is useful here. Even the followup response shows the same issue with the commenter's thinking:

>You are correct that this presents a very good, easy-to-install piece of functionality for Windows users. The Windows shortcomings that you point out are certainly problems, and I think that your software does a good job of overcoming that. (emphasis added.)

They still fail to understand that this is not a Windows or Linux issue but a reliability and ease of use issue. Not to mention the fact that the desktop Linux marketshare was probably less than 1% and therefore irrelevant in this context to begin with.

26. password4321 ◴[08 Apr 25 21:51 UTC] No.43626828{4}[source]
> running your own [proxy servers] is kinda annoying and not recommended or documented

?? https://tailscale.com/kb/1118/custom-derp-servers

27. eadmund ◴[09 Apr 25 03:07 UTC] No.43628530{4}[source]
For a company this is probably okay: companies rely on other companies all the time, and can enforce contracts. I would gladly use tailscale at my company.

For an individual, heck no. Fortunately, headscale exists for individuals to use.

28. eddieroger ◴[09 Apr 25 20:13 UTC] No.43637285{4}[source]
I get it, words matter, but this itself was a reference to the "I understood that reference" meme from Avengers. Thank you for your concern.