Hacker News new | ask | show | jobs
by Am4TIfIsER0ppos 807 days ago
Cloudflare MITM lots of connections plus they run a DNS server so they know exactly what you're up to.
1 comments
SketchySeaBeast 807 days ago
Running a DNS server lets them know what site you're going to, just like everyone who sees the secured request also knows, right? Otherwise there'd be no way for the request to end up at the right location. I suppose they might have an advantage with an encrypted DNS, but I don't think it's much of a MITM if you're sending your request to them to find out where to go.
link
quesera 807 days ago
Cloudflare terminates SSL for all customers behind their DDOS protection, by necessity.

GP is technically correct, but is tilting at windmills at best, making veiled accusations at worst.

link
SketchySeaBeast 807 days ago
Oh, interesting. I didn't realize that.
link
Am4TIfIsER0ppos 807 days ago
Was it veiled? Sorry. Cloudflare is an arm of the US government helping to eavesdrop on all internet traffic.
link
quesera 807 days ago
All US companies follow US law. It sounds goofy, I know, but it's a cultural thing.

When you operate at Cloudflare's scale, you receive a lot of inquiries from law enforcement in all countries. See also Google, Microsoft, Amazon, Apple, AT&T, Verizon, Linode, Hurricane Electric, et cetera ad inifinitum.

If your accusation is more specific than that, you'll want to rethink the word "arm" which is clearly incorrect and makes you sound like a loon.

link