I hear that both CloudFlare is privacy respectful and that it spies on site visitors (with their CDN). What’s your thoughts on this matter?
I hear that both CloudFlare is privacy respectful and that it spies on site visitors (with their CDN). What’s your thoughts on this matter?
Must say I get a few complaints from people about that aspect of Cloudflare when I link to articles on websites using it. I can’t control where others put good content though.
The issue seems to be with Cloudflare acting as a man-in-the-middle, supposedly breaking the SSL and re-encrypting it with their SSL. For normal sites that may be OK but this is not a good idea at all if that SSL is expected to carry passwords or login info or other private info that should arrive intact at the destination site.
So I’ll also be interested to hear what others think and what the solutions are.
There is no doubt here, this is how basically all CDNs work. You need to see the plaintext request in order to perform caching and most other features that they provide.
I agree, if the content is very sensitive then you shouldn’t trust a third party. However in practice most companies trust third parties whether that is a hosting provider, analytics or any number of functions that it is easier to outsource.
I think the concern arises because Cloudflare is big. This has benefits and drawbacks.
You can use archiving services since a lot of time ago to avoid redirecting people to Cloudflared stuff.
There are some which are fully FLOSS-based like https://conifer.rhizome.org which you even can self-host to avoid the limit they put for accounts there.
Isn’t Conifer more like The Internet Archive service? I was understanding Cloudflare was really being used to help manage massive volumes of web traffic ie. more the network management side?
I think I didn’t explain myself at all.
The idea is that you can share the clones of the website in Conifer or any other web archive to avoid the issues with Cloudflare that people could have.