maybe it’s a bad idea to put the entirety of the backbone of the internet on one or two private companies.
Not only because it’s a single point of failure, but also because it’s a single point of surveillance.
Cloudflare can read and even modify the communications everyone has with sites behind its HTTPS service. And it can monitor people’s browsing through its DNS-over-HTTP service. And it can fingerprint people’s browsers through any of its services that use JavaScript, such as its CAPTCHA-like thing.
Also the irony that some “is it down”-detectors using Cloudflare are also down.
Pretty quiet on lemmy without .world and .ca and whatever else. I’m glad to see beehaw still up.
Glad to see it doesn’t use cloudflare.
All three instances I have accounts on use CF. I was beginning to think it was my client I was using or they suddenly implemented the “Great Firewall of USA” and figured out a way to block Lemmy instances.
The status page is overloaded and just gives http 504 errors. Kind of ironic that a cdn provider gets that type of error.
Works for me now as well. I guess it was a temporary thing. Still not something you would expect.
Even though I don’t host anything important, I’m still glad I found alternative ways to hosting my own stuff without the use of any of Cloudflare services.
I’ve noticed over time that the self-hosted communities have been suggesting Cloudflare Tunnels less and less since Trump and his gang took over America. Maybe this latest outage will push more people to not recommend Cloudflare again in the future.
I still remember when I first got into self-hosting and being mocked pretty hard for questioning the use of such a large centralized service like Cloudflare. I’m glad I persisted and kept learning in my own direction but that still was very demotivating at the time.
The only thing I use CloudFlare for is encrypted DNS stuffs, other suggestions for this?
Thanks for the rec, I’ll have a gander, and try it out next day I have free!
I do want to write up a guide about how to setup Caddy + DeSec.io but I don’t have the time at the moment. If you have any questions, feel free to ask. I can try to help where I can.
I’ll leave you this previous post I made, you might find some additional information in there if you get stuck. https://lemmy.dbzer0.com/post/51117983
Also, someone suggested using a wildcard cert for the use of any sub-domain names. I chose to learn and use that because it helps obscure my services. If you have any interest in security, it might interest you. It terms of security, it’s not the absolute way to protect yourself, but I think it helps when combined with other security measures. If you read the comments in the post, you should get some more insight about it.
I think the only thing that is very had to replicate from cloudflares ia ddos protection since they take the hit instead.
Had to get that account back as piefed.zip, piefed.social and lemmy.zip cannot be accessed.
Cool to see other people still able to access the Threadiverse
Discuss.online is still going strong!:-)
On the other hand, the only Piefed instance that is still up is https://piefed.blahaj.zone/ it seems
No issue on slrpnk.net
Ye we’re not relying on cloudflare for precisely this reason.So much of the “decentralized” internet just got brought down by one providing failing.
Thank you as always for your service!
Edit: surprisingly https://anarchist.nexus/ seems to use CF
ikr signing into my slrpnk.net account was like going to an old home I hadn’t been in for a while.
I should really move my domains away from CloudFlare…
