Why do people on /g/ accuse Cloudflare of being a "MITM"? Obviously an HTTP reverse proxy needs to be able to process HTTP requests to function. Also, if someone is paranoid, they can use the Web Crypto API.
>why do people accuse something of doing what it does
>>107846473Saying "MITM" implies they are a cyberattacker
>>107846507Saying "MITM" implies they are the man in the middle, which they are
>>107846515"man in the middle" has always referred to an unknown impersonator, not to reverse proxies
>>107846467because it is?
>>107846467
>>107846533well people on /g/ use it differently, i don't know what to tell you ¯\_(ツ)_/¯
>>107846467As long as your certs aren't hosted by Cloudflare, then you're probably fine.However, I wouldn't be surprised if Cloudflare had access to some of the private keys for CAs.
It's not a MITM attack, people are retards and don't understand how reverse proxies work.
>>107846653Other than the implied malice in everyday use of "MITM", how does the technological aspect itself differ from MITM?
american corporations are satanic and should be punished at every opportunity
>>107846743you don't even believe in God
>>107846689Cloudflare isn't impersonating the client
>>107846533that's your misinterpretation
>>107846847they literally are impersonating the server
>>107847251Yes, they are publicly presenting themselves as the server on behalf of the origin server. Nothing nefarious about that.
>>107847295>nefariousyou're the only one claiming that ittbtw how's the benefits working at cloudflare? I always wondered about that
>>107846847What difference does it make which party they're impersonating? Does a MITM stop being a MITM once you're pretending to be the server?>>107847295There's nothing nefarious in and of itself with any machine relaying info. The implied nefariousness doesn't come from this factor, so why are you underlining that?
>>107846593I relented and just gave in, their free SSL is handled by them, I don't have to do a gay "fake purchase of your free ssl" cert once a year anymore. I'm finally free, god damn it.
>>107847309>>107847315An actual MITM does not operate with the consent of the server owner.
>>107847352let's encrypt has been a thing for a long time
>>107847421>Let's HECCIN encrypterino
>>107846467>>107846533jfc, how fucking retarded are you?
>>107846467>>107847722also>Web Crypto API>just enable javascript in a security-sensitive context, bro. what could go wrong?>what do you mean glowies use 0days to compromise your system?
