Maybe a cartoon shark
Note my bias as I work for Big VPN (Tailscale), but I don’t think that teaching people to ignore security warnings is a good thing to do. The CA system is kind of a scam in general, but I think that at least in its current implementation it’s better for us to encourage people are aware of those errors and what they mean.
As the sacred texts say: self-signed certificates beget the use of curl -k beget the use of self-signed certificates.
Tailscalar here. Use tailscale serve. It is a reverse proxy inside tailscaled. It will handle HTTPS certificates for you too. As an example, here’s a sample HTTP server proxied to both my tailnet via tailscale serve and to the world with Funnel.
Also as far as I know you need to use Serve in order to use Funnel.
This is true with ARM in general. There’s no “standard Linux” to boot because every board needs its own device tree and set of core kernel modules for detecting important things like local storage. It’s fairly intractable due to how different the hardware is.
For the record, I’m pretty sure using Mullvad for XDCC is super overkill, but I wanted to have an excuse to break out userspace wireguard in a project and writing it all in Go made it so damn easy: https://github.com/Xe/x/commit/3d0647e946014516df33de0b18d2a16eec835bed
Generally when you download files over torrent through your ISP, you end up getting love letters from rightsholders. I personally use a homelab NAS as my seedbox and for my public tracker stuff (as well as anime downloads over XDCC) I use Mullvad. I don’t seed overly much on public trackers because of it, but my ratio on private trackers is sky high because ISPs won’t send love letters for private trackers.
No prob! If you run into any problems, feel free to DM me or /u/tailscale@hachyderm.io. We’re more than happy to help.