I know how to AllowPublicKeys on the laptop version but how do I restrict access similarly to only specific public keys on the Android APK version? #70
Comments
|
The Android app doesn't support incoming listeners so it wouldn't really do anything. |
|
But I can connect to my Android device from another remote unit using Yggdrasil it seems. Shouldn't there be a way to allow only specific public keys to connect considering this? |
|
That's not what |
|
I think generally speaking the users believe and for good reasons that when we set AllowedPublicKeys those are the only ones that can establish an SSH connection or VPN connection to the computer for example. Otherwise it's kind of misleading. For example I have seen at least one other user being happy that it's so easy to make access control and a popular LLM also believes that is how to set access control. |
|
Honestly I have toyed with the idea of removing the The main point though is that Yggdrasil does not embed a firewall, so if you want to truly control access to your Yggdrasil IPv6 address, then you need an IPv6 firewall to do so. We might change things up a bit in v0.6 to make it easier to have a closed-loop setup, whereby only devices with a shared password or so can communicate with each other, but we haven't finalised what that might look like yet. |
|
For starters and at the very least please update the comment section of the config file so it is very clear that AllowedPublicKeys does not do what people think it does. |
|
Did the other day: yggdrasil-network/yggdrasil-go@ff0ef7f |
I know how to AllowPublicKeys on the laptop version but how do I restrict access similarly to only specific public keys on the Android APK version?
The text was updated successfully, but these errors were encountered: