this post was submitted on 27 May 2024
853 points (96.7% liked)
Programmer Humor
32588 readers
1211 users here now
Post funny things about programming here! (Or just rant about your favourite programming language.)
Rules:
- Posts must be relevant to programming, programmers, or computer science.
- No NSFW content.
- Jokes must be in good taste. No hate speech, bigotry, etc.
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
They're a giant middleman getting everything you put into html forms unencrypted.
That includes all your usernames, passwords, and everything you submit via text boxes. Do not trust any site that uses cloudflare.
This is such a Lemmy take, good god.
"Cloudflare has been around for over a decade and doesn't do anything nefarious with my data and have never shown any intention of doing so... but, consider this for a moment... what if they DID?"
Citation needed.
Oops, I've got a citation for you.
https://blog.cloudflare.com/cloudflare-prism-secure-ciphers
I know the response will be what you already said in a previous comment about companies saying "trust us bro" so I'll take the L on this one.
Appreciate the humility, thx.
What makes it funnier is that he's one of the main Lemmy devs lol
Trusting US corporations by default rule
NGL I'm struggling to follow that image, do you have a higher res version or an explanation if you don't mind?
https://en.wikipedia.org/wiki/2010s_global_surveillance_disclosures
Oh hey, thanks for Lemmy!
Yeah, I'm a bit horrified to learn that Cloudflare is the crytographic endpoint for clients. I'm wondering how much stuff I've let them see while unaware now.
Y'know, because obviously nobody would voluntarily sign up for this kind of security bad practice. /s
No probs! Yeah it's wild that a lot of people not only using cloudflare sites, but also running them, don't seem to mind that cloudflare is hoovering up everything.
Oh yeah I'll do a full research next time I enter a web page to see who hosts it. If it's by Amazon or Microsoft I'll give green light.
None of the above is easily possible, a lot of us do it.