Devops

Just today I installed Tailscale on a VPS and was wondering why it could discover all machines on my tailnet. Even though I specifically didn’t give it any grants or ACL rules. Turns out, new machines have permissions of the authorizing user when first authorized. These devices were added by me so they assume my identity. — Alex from Tailscale In other words, tailscale on a machine without tags can do everything user can do. Limited only by the capabilities of the Tailscale client software. Luckily, it doesn’t include being able to edit the ACL. ...

I was surprised today to find out that Firefox was using my ISP’s DNS server — even though I had a local Pi-hole set up to use Cloudflare’s 1.1.1.1. It was my mistake. When I set up Pi-hole in my router’s DHCP settings, I forgot about DHCPv6. Once I added the local IPv6 address of my Pi-hole as the DNS server for DHCPv6, my ISP’s DNS server stopped showing up in the test. ...