Privacy

33590 readers

1031 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

[email protected]

Your thoughts on CloudFlare (lemmy.ml)

submitted 3 years ago by [email protected] to c/[email protected]

32 comments fedilink hide all child comments

I hear that both CloudFlare is privacy respectful and that it spies on site visitors (with their CDN). What's your thoughts on this matter?

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 6 points 3 years ago (2 children)

Must say I get a few complaints from people about that aspect of Cloudflare when I link to articles on websites using it. I can't control where others put good content though.

The issue seems to be with Cloudflare acting as a man-in-the-middle, supposedly breaking the SSL and re-encrypting it with their SSL. For normal sites that may be OK but this is not a good idea at all if that SSL is expected to carry passwords or login info or other private info that should arrive intact at the destination site.

So I'll also be interested to hear what others think and what the solutions are.

[–] [email protected] 5 points 3 years ago

supposedly breaking the SSL and re-encrypting it with their SSL

There is no doubt here, this is how basically all CDNs work. You need to see the plaintext request in order to perform caching and most other features that they provide.

I agree, if the content is very sensitive then you shouldn't trust a third party. However in practice most companies trust third parties whether that is a hosting provider, analytics or any number of functions that it is easier to outsource.

I think the concern arises because Cloudflare is big. This has benefits and drawbacks.

Generally larger companies have more resources to invest in security.
Covering such a large portion of the web gives them a lot of possible tracking data if they want to use it maliciously (for whatever your personal definition of malicious is).

[–] [email protected] 2 points 3 years ago (1 children)

You can use archiving services since a lot of time ago to avoid redirecting people to Cloudflared stuff.

There are some which are fully FLOSS-based like https://conifer.rhizome.org which you even can self-host to avoid the limit they put for accounts there.

[–] [email protected] 1 points 3 years ago (1 children)

Isn't Conifer more like The Internet Archive service? I was understanding Cloudflare was really being used to help manage massive volumes of web traffic ie. more the network management side?

[–] [email protected] 2 points 3 years ago* (last edited 3 years ago)

I think I didn't explain myself at all.

The idea is that you can share the clones of the website in Conifer or any other web archive to avoid the issues with Cloudflare that people could have.

Must say I get a few complaints from people about that aspect of Cloudflare when I link to articles on websites using it. I can’t control where others put good content though.

It was a reply to:

Must say I get a few complaints from people about that aspect of Cloudflare when I link to articles on websites using it. I can’t control where others put good content though.

Actually, you can control at this level.