Gabriel NTailscale funnel will tell the whole world about your service trough the certificate transparency log.
I just discovered this after watching someone from a Russian IP identifying as "scanner.ducks.party" crawling my little test.
I don't think @tailscale makes it clear at all that anything exposed with tailscale funnel is announced to everyone listening thanks to certificate transparency.
A small warning when running tailscale funnel would be in place because I very much did not expect anyone to find my little funnel. And I doubt others do either.
@tannerprynn also noticed this already a while ago and did a bit of scanning to see what people are putting up. And it was mostly Plex and other hobbyist thing. But I think nowadays Tailscale has moved into enterprise so I would guess there is a lot more "interesting" things being exposed.
tannerprynn (@[email protected])
Tailscale has a feature called Tailscale Funnel that kind of does the opposite of everything else Tailscale does? It exposes nodes directly to the Internet. And all the hostnames are published in CT, so I scanned it #appsec #nmap #tls #tailscale https://tprynn.github.io/2023/07/10/tailscale-funnel-scanning.html
