The public keys are stored on the server (by necessity) but not the private keys. The actual connection is directly between two of your own machines, or routed through a DERP server (encrypted end-to-end) in rare cases.
But if you’re concerned, you can instead self host headscale or netbird.
The public keys can be stored anywhere, it doesn’t matter. That’s why they’re called public: because they’re not private, they’re not sensitive, they’re not a secret.
Yes, but tailscale is a privacy nightmare, because your private keys are stored in their servers
That makes zero sense. Where did you get that idea from?
For reference, here are their docs describing key management. https://tailscale.com/blog/tailscale-key-management
You can trust them, but you shouldn’t trust any open source project by default, and it’s even more important in the context of big corporate software.
https://lemmy.world/comment/10513393
The public keys are stored on the server (by necessity) but not the private keys. The actual connection is directly between two of your own machines, or routed through a DERP server (encrypted end-to-end) in rare cases.
But if you’re concerned, you can instead self host headscale or netbird.
The public keys can be stored anywhere, it doesn’t matter. That’s why they’re called public: because they’re not private, they’re not sensitive, they’re not a secret.