It is obvious that Cloudflare is being influenced to enforce browser monopolies. Imagine if Cloudflare existed in 2003 and stopped non Internet Explorer browsers. If you use cloudflare to “protect” your site you are discriminating against browser choice and are as bad as Microsoft in 1998.
If you use cloudflare to “protect” your site you are discriminating against browser choice and are as bad as Microsoft in 1998.
😕
Agreed. I use cloudflare for domain hosting because they’re cheap, but I have never liked their protections.
Need to start spoofing user agent strings again.
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; Hotbar 3.0)
These bastards haven’t MITMed half the internet for nothing. This isn’t the first time they abuse that either.
I hate that I once fell for it too when I just started out hosting stuff and put it behind their proxy.
What do you use now instead of cloudflare?
What is MITMed?
“Man in the middle”. They are used by a lot of web services as a proxy, usually to prevent DDOS attacks.
And when Cloudflare is the proxy for a web site, it’s Cloudflare that provides the HTTPS connection, meaning that you don’t actually have an encrypted channel directly to the site. Cloudflare is the man-in-the-middle eavesdropping on all of your communications with that site. Your bank transactions, your medical records, your personal messages, etc.
Interesting. I’m going to keep this in mind.
Weird how much of a monopoly cloudflare has on the internet. I guess it’s going to start being an indicator for me for services that have becomes “too big for their britches.”
Small companies use CF as well. It really is one of the best ways to prevent all sorts of bad actors
One of the easiest, perhaps. Not best. Anything that gives a single entity control over so much of the internet, and positions them to snoop on so much of everyone’s communications, will never be “best”.
Lol… You gonna browse how daddy told you or you won’t get to browse
I can’t use my Browser without it being created by a tech giant, cant use my new computer without having my software uefi signed by Microsoft, AI will soon need me to have my GPU licensed and registered.
The world is heading to crap.
You can always build a PC and not have to deal with that UEFI signing stuff as you’re expected to provide your own OS still, that option hasn’t been eliminated yet.
Also, AMD cards are more friendly to Linux users than Nvidia cards are, even with the existence of NVK for the latter; NVK only supports Turing and newer cards and Maxwell, Pascal, and Volta are too old for it, and since Nouveau is broken on Maxwell and newer by firmware signing, once those cards lose support in the proprietary drivers, unless NVK gets backported to them somehow, you’ll be SOL in the near future for 900-series, 10-series, and the Titan V, while Kepler and older is still supported by Nouveau, meanwhile over at AMD, Mesa actively supports Radeon cards going back to GCN1.
Basically, if you still have an R9 Fury or an RX 580 sitting around, for example, those cards will still be actively supported by Mesa open drivers for the foreseeable future, meanwhile your GTX 980Ti or 1080Ti, at least currently, are fully at the mercy of Nvidia’s closed drivers.
You can, it’ll cost more and give you less, but you can.
That’s the way this works.
On librewolf, i get blocked. its a firefox fork and still it happens. had to set up a Firefox User Agent plugin.
Its kind of funny but thats how user agents have been for a while. It’s historically just been browsers pretending to be one another.
Yeah and that’s why it’s one of the basics of the basics you learn as a software developer that you shouldn’t sniff the useragent, because it’s unreliable and causes issues. Yet all big webpages (especially those pretending to be a software) do it, causing issues. Even just trimming the useragent string (xorigin.trimming.policy) makes “advanced services” like a webshop unusable.
Just don’t do useragent sniffing, do feature detection instead.
What doesn’t work with Lynx is a wrong website.
Agree for static content like news and blogs. Disagree for dynamic content like games and social media. And the latter is mostly for scale (having server-side templating is expensive for rapidly changing content).
Then again, there’s a case for snapshotting SM pages every so often for things like crawlers and cli browsers.
I would be very interested to know how they plan to resolve these issues with “Ladybird.” Using a new engine will likely clash with the FALSE “security measures” of many websites and harm the browsing experience. It’s often said that users should demand respect for web standards, but in the meantime, as usability declines, users will gradually drift away. Firefox learned this lesson the hard way.
Servo is another wip web browser, managed by the Linux foundation’s European branch. It’s a little less far along but is making relatively quick progress now. Apparently discord already mostly works, with sending messages currently being a problem.
So make useragent sniffing useless by all being Chrome?
Funnily enough, some webpages work better if you block webgl and set the user agent to Lynx or Dillo.
I was planning on moving away from Cloudflare to European providers anyway, so this just adds fuel to the fire.
I’m considering using BunnyDNS for DNS management, not using a CDN at all, and using Scaleway for serverless functions.
Maybe is against the ToS but I’ve used github as CDN for free in the past… Might work for you.
I never felt it was wrong, it was around the time of the Microsoft acquisition.
I appreciate the suggestion, but Github is also an American company. I’ve been moving my git repositories to Codeberg.
My sites don’t get enough traffic to warrant a CDN really, but if necessary, BunnyCDN looks like it can fit the bill. Plus, my static sites are in Scaleway object storage.
Should change my user agent to sod off
I just duplicated this. I downloaded Pale Moon and went to https://hear-me.social/ and clicked on “Register”. It puts up a Cloudflare “managed challenge” which loops endlessly when using Pale Moon, but not the other browsers I’ve tried it with, including Zen, another Firefox fork.
It’s a problem, for sure.
As a staunch Pale Moon user, Cloudflare is just being a bully and I circumvent their nonsense when I need to desperately use a particular site or just don’t go to that site anymore if I can do without.
Greed. I honestly don’t know if they’re even aware of the problem. Most corporations have cut teams to the bone and I can’t see Cloudflare being an exception. The janitor is probably writing detection rules now.
Pale Moon still exists? Huh
Yeah? I ddos websites with Pale Moon and Iceweasel so what?
I feel like I remember reading that the pale moon JavaScript engine was broken and causing the capcha to break repeatedly?
Let me see if I can find sources
EDIT: Looks like I was remembering a previous issue where the captchas were causing the entire pale moon browser to crash. I believe this has been fixed, but the new issue is a much less exciting block.
