Hacker News new | ask | show | jobs
by stormbrew 4440 days ago
I use n2n for things that don't really matter, it's quite nice and simple, but has some pretty glaring potential if not real security flaws in its design (and the v2 that was supposed to fix some of them seems to be in some kind of deep technical debt hole and tends to crash).

After this thread I'll be looking at fastd and zerotierone, though.
1 comments
uuid_to_string 4440 days ago
What do you use for things that matter?

Do you have something else to create L2 overlays that is more secure?

link
stormbrew 4440 days ago
Unfortunately, openvpn. :/
link
uuid_to_string 4439 days ago
As you know, OpenVPN cannot do what n2n can do.

Someone has to run an OpenVPN server. Everyone on the network has to trust that server.

And connections between network participants are not peer to peer.

With OpenVPN and most other VPN's, if I'm not mistaken, each person's traffic passes through a central point: some VPN server/appliance.

This is a major difference and has its own set of security implications.

link