HackingLZNov 21, 2022
Emily Trau 🏳️‍⚧️

we pwned @tailscale ❤️
ft. @jamie
https://emily.id.au/tailscale

#Tailscale

CVE-2022-41924 - RCE in Tailscale, DNS Rebinding, and You

TL;DR Recommendations

Nov 21, 2022 at 6:08pmWeb
Show threadChris PetrilliNov 21, 2022
@tailscale @emilyposting @jamie this is an awesome write up!
Show threadms. informationNov 21, 2022
@emilyposting @jamie really enjoyed the writeup, sick work :)
Show threadJonasHeidelbergNov 21, 2022
@gren @emilyposting @jamie fully agree… I understood like 15% of the writeup, but it felt like a crime novel… 😍
Show threadMikael HanssonNov 21, 2022
@emilyposting @tailscale @jamie
Loved the writeup. Loved Tailscale’s response. Impressive!
Show threadxyhhxNov 21, 2022

@emilyposting @tailscale @jamie “If you visit my website, I am granted the honour and the privilege of executing arbitrary Javascript on your computer.”

uMatrix would like to have a word

Show threadjaybealeNov 21, 2022
@emilyposting @jamie Freaking awesome write-up and awesome work. And incredible speed for fixes and communication from @tailscale! Wow to all of you!
Show threadShmnel Nov 21, 2022

@emilyposting @tailscale @jamie Wait @tailscale is here?

I just want to say I love to see you guys on here.  

(Yes tailscale.com is verified on their profile)

Show threadAlex StamosNov 21, 2022
@emilyposting @tailscale @jamie Nice. Just got the warning email from Tailscale to update, which is also a cool move by them.
Show threadkouhai, of the health issuesNov 21, 2022

@emilyposting @tailscale @jamie trains! :o

(the writeup was fantastic. props!)

Show threadMarco Franssen Nov 21, 2022
@emilyposting @tailscale @jamie awesome article! 🤩
Show threadAaron HuslageNov 21, 2022
@emilyposting @tailscale @jamie This is a fabulous write up!
Show threadEricNov 21, 2022
@emilyposting @jamie Awesome, thanks for the write up! I also have to give credit to @tailscale for detecting that I had a vulnerable install, emailing me with a notification, and providing a link that showed all the vulnerable installs.
Show threadsean 🔒Nov 21, 2022

@emilyposting @tailscale @jamie

"None of these words are in the Bible."

haha, this writeup rules! thanks for it

Show threadGabriel Adrian SamfiraNov 21, 2022
@emilyposting @tailscale @jamie amazing work! A pleasure to read.
Show threadColin WaltersNov 21, 2022
@emilyposting Nice writeup. Seems like nearly everyone who does the "Let's expose a local-only API via HTTP" hits this trap.
Show threadAmit SerperNov 21, 2022
@emilyposting
Very, very, good work!! Fantastic read! Well done.
@tailscale @jamie
Show threadRonoaldo PereiraNov 21, 2022
@emilyposting @tailscale @jamie awesome!!! Never saw such a great and entertaining (not to mention educational) write up as well as such fast response from vendor. Wow!👏🏻👏🏻👏🏻
Show threadJames WuNov 22, 2022
@emilyposting @jamie @tailscale what a gorgeous writeup, featuring superfluous graphviz and trains!
Show threadnoperatorNov 22, 2022
@emilyposting @tailscale @jamie Amazing:
> Since we can make the SMB connection over Tailscale, we bypass any network-level egress filtering of SMB connections
Show thread[email protected]Nov 22, 2022
@emilyposting @tailscale @jamie
What an educating and fun novella, thanks for your work!
Show threadSqaaakoi Nov 22, 2022
@emilyposting @tailscale @jamie will make sure to upgrade!
Show thread🧑‍💻🐴 Nov 22, 2022
@emilyposting @tailscale @jamie this is epic!   Thank you for sharing!
Show threadOJNov 22, 2022
@emilyposting @jamie Great write up and nice findings. Well done folks!
Show threadLouis des LandesNov 22, 2022

@emilyposting @tailscale @jamie

Great read, directly relevant. Thanks!

Show threadWavering AnaNov 22, 2022
@emilyposting this actually introduced me to tailscale and I super appreciate it being behind cgnat
Show threadVaughanNov 22, 2022
Nice work! Also, I had a lol at the perl/python expansion under Becoming the Control Plane... very droll!
Show threadani bettsNov 23, 2022
@emilyposting @tailscale @jamie Incredible write-up, and an incredibly thorough response from the Tailscale team!