Posted by: 3421748?
Posting time: 1.2 years ago on
Last edit time: never edited.
Archived on: 12/11/2019 10:00:00 AM
Views: 451
SCP: 72
73 upvotes, 1 downvotes (99% upvoted it)
~91 user(s) here now
Subverse anonymized: usernames are hidden and votes don't count.
NSFW: Yes
Authorized: No
Anon: Yes
Private: No
Type: Default
view the rest of the comments →
[–] 20538241? 0 points 3 points 3 points (+3|-0) ago (edited ago)
you are ...
100% INCORRECT!
It is not a certificate owned nor controlled by voat.co and data is in fact ONLY sent to actual voat.co server in palintext or in a DIFFERENT KEY if any.
If you read about RULES and PROCEDURES for using Cloudflare you would know this.
If you knew how to read the SSL cert you would know this.
If you read the news, or messages from cloudflare regarding us gov subpoenas , you would know they OFTEN give large amounts of data to feds... unencrypted on their end.
"But what seems to be overlooked by many is that fact that the ‘Flexible SSL’ option only provides secure traffic between the user and CloudFlares network – NOT between CloudFlare and your website. Which means the users traffic is exposed over the internet as normal HTTP traffic." :
https://www.itsupportguides.com/knowledge-base/website-tips/why-cloudflares-flexible-ssl-is-really-bad/
The Real Cost of a CloudFlare “Free” SSL Certificate :
https://info.ssl.com/the-real-cost-of-a-cloudflare-free-ssl-certificate/
and :
https://support.cloudflare.com/hc/en-us/articles/203295200
EDIT :
and "baby talk" explanation of scandal here :
https://www.reddit.com/r/privacy/comments/41cb4k/be_careful_with_cloudflare/
TL/DR: ALL DATA is momentarily decrypted by the real owner of the SSL key , Cloudflare, before exiting cloudflares servers to voat.co
[–] 20538682? 1 point 0 points 1 point (+1|-1) ago
So cloudflare doesn't allow you to encrypt the data before you send it thru them? That's bullshit. Prove me wrong.
[–] 20542821? ago (edited ago)
Its true, they do not, not using HTTPS that VOAT.co owns the decryption key for, and also, if you try to subvert their user contract with them by adding custom-made javascript side encryption for all data, you also cannot use cloudflare, just read up and follow the links, I think you are a fool, or a person who refuses to follow and comprehend links directly laid out for you in https://voat.co/v/QRV/3421748/20538241 , or a FBI shill.
[–] 20538363? ago
STOP! Too technical. Please explain terms such as "palintext" for the rest of us numpties.
[–] 20538706? ago
He meant plain text