[altdatathrow]

They control SSL decryption for a massive number of websites. Governments will gladly fund Cloudflare for eternity.

[mlindner]

If your root CA is subject to the laws of a government that can take the root certificates and MITM the connection with those root CAs that's not much better. Cloudflare just makes it easier.

[firloop]

Certificate Transparency makes this significantly harder to do stealthily. I’m not convinced that Cloudflare is a deep state operation either, but Cloudflare's ability to secretly MITM is a position afforded to a select few, and certainly not every CA.

[abiogenesis]

It's much easier (and virtually undetectable) to MITM when you are also the reverse proxy though.

[judge2020]

Akamai as well then?

[dimitrios1]

Much of the US Government already uses it, so yes.