I made a post here about the danger of Cloudflare and the nightmare about how it functions:
https://sh.itjust.works/post/20529148
Cloudflare is a MITM can see everything going on and every request I'm making plus all the data I'm sending.
So explain to me why Trocador is using it? Are they a honeypot? They pride themself soooo much on anonymity, NoJS, Onion support, deletion of records, No KYC, No logs unless fully necessary, but yet, they allow Cloudflare to record every single piece of data about my interactions on trocador, all the requests, both POST and GET, all the addresses and amounts im inputting, quotes im making, and of course, associate my browser fingerprint and IP with all that yummy data that the NSA would be really happy to collect ;) ! How curious indeed..
It's a known fact that Cloudflare works the way I described. So why would Trocador willingly give over everything I'm inputting into the site over to Cloudflare? Please, someone explain this to me.
And it's not just trocador. soooo many Monero and privacy oriented sites are using Cloudflare MITM. Today I'm picking on Trocador but later I'll pick on more as I remember/come across them.
Here is a relevant paragraph I wrote:
I'm sick to my stomach of all these orgs and companies and people talking about privacy, and then they constantly do all these kinds of things thst prove that they don't actually care about privacy or anonymity or anything in between. They are Vipers and Snakes trying to make a quick dollar on a buzzword. It's become sadly trite.
I'm fully ready to somehow(?) be wrong about all this and eat my words.
yes, and it's a travesty. very sad. that's what my post was lamenting really, that so many just allow the monster to spy on all their users.
the Monero team is good at what they do but they dont always make the best decisions. like why depend on Microsoft Github? and remember when they put a CCS wallet on Windows and then got the funds stolen?๐ And of course, succumbing to the Cloudflare MITM filth.
Do you think this is something you could take on and resolve? perhaps pitch a solution on the CCS?