“Cloudflare doesn’t do anything nefarious with my data and have never shown any intention of doing so… but, consider this for a moment… what if they DID?”
Yeah, I’m a bit horrified to learn that Cloudflare is the crytographic endpoint for clients. I’m wondering how much stuff I’ve let them see unaware now. Because obviously nobody would voluntarily sign up for this kind of security bad practice. /s
No probs! Yeah it’s wild that a lot of people not only using cloudflare sites, but also running them, don’t seem to mind that cloudflare is hoovering up everything.
They’re a giant middleman getting everything you put into html forms unencrypted.
That includes all your usernames, passwords, and everything you submit via text boxes. Do not trust any site that uses cloudflare.
This is such a Lemmy take, good god.
“Cloudflare doesn’t do anything nefarious with my data and have never shown any intention of doing so… but, consider this for a moment… what if they DID?”
Citation needed.
Oops, I’ve got a citation for you.
https://blog.cloudflare.com/cloudflare-prism-secure-ciphers
I know the response will be what you already said in a previous comment about companies saying “trust us bro” so I’ll take the L on this one.
Appreciate the humility, thx.
What makes it funnier is that he’s one of the main Lemmy devs lol
Trusting US corporations by default rule
NGL I’m struggling to follow that image, do you have a higher res version or an explanation if you don’t mind?
https://en.wikipedia.org/wiki/2010s_global_surveillance_disclosures
Oh hey, thanks for Lemmy!
Yeah, I’m a bit horrified to learn that Cloudflare is the crytographic endpoint for clients. I’m wondering how much stuff I’ve let them see unaware now. Because obviously nobody would voluntarily sign up for this kind of security bad practice. /s
No probs! Yeah it’s wild that a lot of people not only using cloudflare sites, but also running them, don’t seem to mind that cloudflare is hoovering up everything.
Oh yeah I’ll do a full research next time I enter a web page to see who hosts it. If it’s by Amazon or Microsoft I’ll give green light.
None of the above is easily possible, a lot of us do it.