And when Cloudflare is the proxy for a web site, it’s Cloudflare that provides the HTTPS connection, meaning that you don’t actually have an encrypted channel directly to the site. Cloudflare is the man-in-the-middle eavesdropping on all of your communications with that site. Your bank transactions, your medical records, your personal messages, etc.
Do you know how they’re able to insert that error page into the response that reaches your browser, even though it’s an https connection and your browser assures you that it’s “secure”?
Clouldflare is able to do this because they are a middle-man between you and the site. They can eavesdrop and/or alter anything sent or received on that connection.
And when Cloudflare is the proxy for a web site, it’s Cloudflare that provides the HTTPS connection, meaning that you don’t actually have an encrypted channel directly to the site. Cloudflare is the man-in-the-middle eavesdropping on all of your communications with that site. Your bank transactions, your medical records, your personal messages, etc.
Lol what?
I thought they just did rate limiting and such, I can’t believe they do SSL as well.
Have you ever tried to visit a web site and found a Cloudflare error page instead? It might have looked like this:
https://www.webproeducation.org/wp-content/uploads/2020/10/error-524-cloudflare-233e5a08ce8c4d92843b7a841fa7c015.png
Do you know how they’re able to insert that error page into the response that reaches your browser, even though it’s an https connection and your browser assures you that it’s “secure”?
Clouldflare is able to do this because they are a middle-man between you and the site. They can eavesdrop and/or alter anything sent or received on that connection.