undefined | Better HN

0 pointscassianoleal2y ago0 comments

It doesn't, but it does proxy my connections to several websites without my me having a chance to say no - in fact, without even telling me.

0 comments

powersnail2y ago

It’s always the website’s choice what infrastructure is used to serve the website, including whether a proxy is used. You don’t have a chance to say no if the website owner wants a proxy in front of their site. The web owner has a say in how they want their server to be connected.

In the same way, you can use a proxy to access sites, and the server cannot bypass that, either.

cassianolealOP2y ago

I know. I understand the tech and the business decisions behind all of this. I understand the value of a CDN.

It's still a MitM. It's a centralised entity that sees a huge share of the global Internet's traffic, unencrypted. I doubt most people are aware of that.

Someone in another comment mentioned AWS is one as well, and they're right. AWS, GCP and Azure all have TLS-terminating gateways of some kind.

Take Cloudflare, AWS, GCP and Azure, all USA companies bound by the CLOUD act, and nearly all Internet traffic is immediately accessible by US authorities, unencrypted.

Makes the whole "think of the children" rhetoric being spun to pass anti-E2EE laws tame in comparison.

j / k navigate · click thread line to collapse