New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
@rickey just turn javascript off see how effective is cf to identify real person or bot.
Legit traffic is shoved just for having js off
This. It should be on everyones bingo card
I only see those captcha on sites that have enabled ddos protection and it's usually forums that get lots of traffic or flagged.
Cloudflare has a monopoly in an area that no one wanted to really serve - specifically providing free CDN services.
They could be an issue in the future if they started charging or scraping people's traffic, but right now it's an incredible deal for anyone running a server or site.
I'm not sure why everyone's concerned about Cloudflare being a huge MITM because everyone else providing a similar proxy setup is also a MITM. Reverse proxy, GRE tunnel, etc. they all work the same. Cloudflare just happens to be the biggest one because it has a free plan.
If I'm hosting sensitive stuff I don't really want to give anyone a free MITM when I could just use the direct IP and SSL.
But it's clearly a valuable service if you need the DDoS protection, CDN, etc - and the free plan is very generous.
Make the calculation on your own if it's worth it. I have a few public-facing sites still behind it, but I don't like using it for any of my self-hosted services where I can get away without using it.
Its old news, why bring it here 😹
breaking news eh
if cloudflare was a bad actor with MITM then major enterprises would NOT use them. they're trusted for a reason.
in some places the cloudflare can left lot slow and give errors to open pages of image, i can use of example lot manwhas and manhuas sites.
but its only this.
those sites might have bad routing/connection to cloudflare's edge PoPs
Yes because nobody but bots and nerds (and not the cool kind) have js off, you lose nothing by blocking them
i'll make sure to check each site if it uses cloudflare before going there in the future, ty
Falkon does that automatically thanks to being abandonware. Meaning, it doesn't pass any captcha of cloudflare challenge. Good stuff.
Note: see @emgh's apostille just below.
Most CF sites won’t show captcha. Rekt
Derp you got me. It hurts bro.
Well you know what I mean. It doesn't pass the challenges.
Just relax bro won’t hurt as much
Clownflare, just like every CDN, has to do MiTM and TLS termination if you use it as a proxy. At the very least, don't use their certificate. Let's encrypt is there for a reason.
People with "my data is worthless" are the exact savages because of whom we have rampant mass surveillance. How would you feel when your worthless data is scooped up by data brokers and being sold to your employer or your insurance company? Yeah, mass surveillance is real. We all practice physical privacy and there is no reason not to practice it in the inter webs.
"guys, this is serious matter"
Thanks Davide for your commentary.
Free is enough, CloudFlare provides quite a lot of free features, especially for individuals and small companies.
Although its performance may not be comparable to some professional companies, I remember that Vercel's CEO complained about the instability of CloudFlare service a while ago.
So i just encrypt my data before transfer to cloudflare
Reading this topic it makes me to move from Cloudflare ffs.
At least we have an alternative conveniently below 😂
So in the end, are we using CF or not chat?
I'll continue using Cloudflare's free service unless there's solid evidence of MITM attacks leading to data theft.
Cloudflare's years of free service generally inspire trust.
Hmm, I only love Cloudflare DNS Only mode and don't use any other features
do you mean Flexible SSL causes MITM attacks? protect your backend and you are safe!
I doubt CF has any criminal motives but it is a bit.. saddening? to see us embrace another internet giant whose goals will end up being unaligned with the greater good because.. free stuff!! But that's the audience here, only the price point matters.
It reminds me a bit of watching and experiencing Google's evolution over the years.
I think the Full or Full (Strict) does that.
It won't protect against mitm, it will only ensure the traffic between cloudflare and you js also encrypted with a self signed certificate or a proper certificate