EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

02.17.19

Don’t Use Cloudflare Because You Impose This on People Who Least Want It

Posted in Servers at 8:21 am by Dr. Roy Schestowitz

It may also put these people at risk

Cloudflare

Summary: Reasons to stop making the World Wide Web so heavily dependent on some dubious companies like Cloudflare, which already has a worrisome track record

OVER the years, at work and at home (e.g. in social control media), I have expressed strong (but polite) criticism of Cloudflare (or CloudFlare or CF) and its dangers — to the point where its oversensitive staff decided to block my Twitter account (not due to abuse or because I spoke to them, they just didn’t want to see anything I had said). I’ve rarely come across so thin-skinned a company and recently I have seen people making the very same points. So here’s the gist of it all: Cloudflare is a MitM (man in the middle) and this enables Cloudflare to engage in censorship, surveillance and even worse things. Cloudflare has done both things in the past and was at times caught misusing its power. Cloudflare is no ordinary CDN but a private, for-profit company that’s upselling. At times they also have technical issues and I’ve seen not just companies but public institutions forced offline (or into semi-working order) due to Cloudflare.

Each time we come under heavy DDOS attack (we have not had such issues for a number of months) someone out there asks us why we don’t use Cloudflare. Explaining all the associated issues is time-consuming as the explanation can be lengthy.

“In some cases, for particular countries, having all traffic visible to the US (through an American company with legal obligations to its government) can be a matter of life and death.”I’ve been dealing with Cloudflare since it was a young company, however reluctantly, at work. I’ve seen public institutions coming to rely on this foreign company and relaying all traffic through it. That raises all sorts of legal questions.

The bottom line is, never ever use Cloudflare. When accessing sites that route traffic through Cloudflare one might in fact be denied access (e.g. Tor users or people who rightly reject JavaScript). In that case, it’s wise to leave (not enter the site), instead leaving a note to the Webmaster, urging him/her to drop Cloudflare.

Sites that respect their visitors do not resort to Cloudflare. Building one’s own CDN may be expensive, but what is the worth of your visitors’ rights? In some cases, for particular countries, having all traffic visible to the US (through an American company with legal obligations to its government) can be a matter of life and death.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Team Campinos Will Try to Make It Difficult to Go on Strike (But Won't Manage to Prevent It)

    The European Patent Office has a long and growing tradition of failing to respect staff's rights, including the right to go on strike (over violations of other rights of staff)



  2. Links 25/5/2019: Wine 4.9 Released, FreeBSD 11.3 Beta, Telegram Launches Fift

    Links for the day



  3. Links 24/5/2019: PostgreSQL 12 Beta 1 and Rust 1.35 Released

    Links for the day



  4. EPO Strikes Further Diminish Chances of UPC Ever Materialising (in Any Shape or Form)

    The EPO crumbles under the weight of its own corruption while an increasingly-insane Team UPC pretends all remains normal and a patent trolls-friendly system is ready to take off



  5. EPO Allegedly Becoming Insolvent (Pretext for Cuts), So Staff Gets Punished While Management Takes the Jackpot

    The corporate 'logic' at the EPO follows the "shareholders' value" propaganda line as if the EPO is a private company looking to maximise revenue rather than serve the public



  6. EPO President Still Not Obeying Courts' Rulings

    Federation of International Civil Service Associations (FICSA) sent a message to António Campinos yesterday (the same day SUEPO publicly made a call for strike)



  7. António Campinos Has Run Out of Time and EPO Staff is Going on Strike (Skipping Mere Protests)

    European Patent Office strikes are to resume; as SUEPO recently put it, people have come to accept that EPO leadership has not really changed and none of the underlying issues is being tackled



  8. Links 23/5/2019: Elisa 0.4.0, OpenSUSE Leap 15.1 Released

    Links for the day



  9. Links 22/5/2019: Mesa 19.0.5, Huawei and GNU/Linux, Curl 7.65.0, End of Antergos, Tails 3.14, ownCloud Server 10.2, Firefox 67.0

    Links for the day



  10. Quality of Patents is Going Down the Drain and Courts Have Certainly Noticed

    Uncertainty or lack of confidence in the patent system has reached appalling levels because heads of patent offices are just striving to grant as many patents as possible, irrespective of the underlying law



  11. EUIPO and EPO Abuses Growingly Inseparable

    'Musical chairs' at CEIPI and the EPO/EUIPO (Battistelli, Archambeau, Campinos) as well as joint reports never fail to reveal the extent to which EPO abuses are spreading



  12. Links 21/5/2019: China's GAFAM Exit, DragonFlyBSD 5.4.3

    Links for the day



  13. Links 20/5/2019: Linux 5.2 RC1, LibreOffice 6.3 Alpha, DXVK 1.2.1, Bison 3.4 Released

    Links for the day



  14. South Korea's Government Will Show If Microsoft Loves Linux or Just Attacks It Very Viciously Like It Did in Munich

    Microsoft's hatred of all things GNU/Linux is always put to the test when someone 'dares' use it outside Microsoft's control and cash cows (e.g. Azure and Vista 10/WSL); will Microsoft combat its longstanding urge to corrupt or oust officials with the courage to say "no" to Microsoft?



  15. Links 19/5/2019: KDE Applications 19.04.1 in FlatHub and GNU/Linux Adoption

    Links for the day



  16. The War on Patent Quality

    A look at the EPO's reluctance to admit errors and resistance to the EPC, which is its very founding document



  17. Watchtroll, Composed by Patent Trolls, Calls the American Patent System “Corrupt”

    Another very fine piece from Watchtroll comes from very fine patent trolls who cheer for Donald Trump as if he's the one who tackles corruption rather than spreading it



  18. Unified Patent Court Won't Happen Just Because the Litigation Microcosm Wants It

    Unified Patent Court (UPC) hopefuls are quote-mining and cherry-picking to manufacture the false impression that the UPC is just around the corner when in reality the UPC is pretty much dead (but not buried yet)



  19. Links 17/5/2019: South Korea's GNU/Linux Pivot, Linux 5.1.3

    Links for the day



  20. Q2 Midterm Weather Forecast for EPOnia, Part 4: Happy Birthday to the Kötter Group?

    This year the Kötter Group commemorates the 85th anniversary of its existence. But is it really a cause for celebration or would a less self-congratulatory approach be more fitting? And does it create the risk that a routine tendering exercise at the EPO will turn into Operation Charlie Foxtrot?



  21. Links 16/5/2019: Cockpit 194, VMware Acquires Bitnami, Another Wine Announcement and Krita 4.2.0 Beta

    Links for the day



  22. The EPO's Key Function -- Like the UPC's Vision -- Has Virtually Collapsed

    The EPO no longer issues good patents and staff is extremely unhappy; but the Office tries to create an alternate (false) reality and issues intentionally misleading statements



  23. Stanford's NPE Litigation Database Makes a Nice Addition in the Fight Against Software Patent Trolls

    As the United States of America becomes less trolls- and software patents-friendly (often conflated with plaintiff (un)friendliness) it's important to have accurate data which documents the numbers and motivates better policy; The NPE (troll) Litigation Database is a move towards that and it's free to access/use



  24. Q2 Midterm Weather Forecast for EPOnia, Part 3: “Ein kritikwürdiges Unternehmen”

    A brief account of some further controversies in which the Kötter Group has been involved and its strained relations with German trade unions such as Verdi



  25. EPO Had a Leakage Problem and Privacy of Stakeholders Was Compromised, Affecting at Least 100 Cases

    The confidentiality principle was compromised at the EPO and stakeholders weren't told about it (there was a coverup)



  26. Links 15/5/2019: More Linux Patches and More Known Intel Bugs

    Links for the day



  27. False Hope for Patent Maximalists and Litigation Zealots

    Patent litigation predators in the United States, along with Team UPC in Europe, are trying to manufacture optimistic predictions; a quick and rather shallow critical analysis reveals their lies and distortions



  28. The Race to the Bottom of Patent Quality at the EPO

    The EPO has become more like a rubber-stamper than a patent office — a fact that worries senior staff who witnessed this gradual and troublesome transition (from quality to raw quantity)



  29. Q2 Midterm Weather Forecast for EPOnia, Part 2: Meet the Kötters

    An introduction to the Kötter Group, the private security conglomerate which is lined up for the award of a juicy EUR 30 million contract for the provision of security services at the EPO



  30. Links 14/5/2019: Red Hat Satellite 6.5, NVIDIA 430.14 Linux Driver and New Security Bug (MDS)

    Links for the day


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts