Post ASXyuKm9XPlyiKsZG4 by koherecoWatchdog@freeradical.zone
(DIR) More posts by koherecoWatchdog@freeradical.zone
(DIR) Post #ASX1tsnXfC24eD2sMK by matt@oslo.town
2023-02-10T09:08:20Z
0 likes, 0 repeats
@futzle For residents of #Oslo, Norway 🇳🇴 then we have capacity at oslo.town for folk looking to #FindAServer 👋
(DIR) Post #ASXDzz0egHZb6Er1Rw by mae@tsukihi.me
2023-02-10T06:21:24Z
0 likes, 1 repeats
@futzle tsukihi.me is also open
(DIR) Post #ASXE0D4MPIr6hmhBAW by cautionwip@mstdn.ca
2023-02-10T06:55:29Z
0 likes, 1 repeats
@futzle mstdn.ca, mstdn.games and tech.lgbt have all announced they’ve got room. Mstdn.ca is open signup while the other two (I believe) are manual.Edited to correct incorrect instance name in OP.
(DIR) Post #ASXyuKm9XPlyiKsZG4 by koherecoWatchdog@freeradical.zone
2023-02-10T19:34:36Z
1 likes, 0 repeats
@futzle Some of those have capacity because they use a privacy-hostile corp and are part of a centralized walled garden:❌ aus.social ← Cloudflare❌ eigenmagic.net ← Cloudflare❌ mastodon.au ← Cloudflare❌ syd.social ← Cloudflare❌ thecanadian.social ← Cloudflare
(DIR) Post #ASZA2bFJbu4wtXVy5Y by Erik@social.uden.ai
2023-02-11T09:47:28.185215Z
0 likes, 0 repeats
But using CloudFlare’s CDN is among the few good ways to avoid DDoS attacks.I wouldn’t call them a walled garden, they still perfectly federate and allow IPv6
(DIR) Post #ASZA2dcmlc2cGuVjwu by w@arachnid.town
2023-02-11T09:48:35.763085Z
0 likes, 0 repeats
@Erik @koherecoWatchdog @futzle They also have unencrypted access to things like passwords.
(DIR) Post #ASZAFYvxWCJnUKdrXc by Erik@social.uden.ai
2023-02-11T09:49:51.215391Z
0 likes, 0 repeats
Oh, you mean these instances are using CloudFlare Workers to host their instances and not just the CloudFlare proxy service?
(DIR) Post #ASZAFbCh4wtQWoUFu4 by w@arachnid.town
2023-02-11T09:50:55.671634Z
0 likes, 0 repeats
@Erik @koherecoWatchdog @futzle Nah. They're a man-in-the-middle, that's how they're able to cache and detect things.
(DIR) Post #ASZAu5Cox2OPA3qnZo by Erik@social.uden.ai
2023-02-11T09:54:52.804083Z
0 likes, 0 repeats
Fediverse passwords aren’t sent unencrypted to the server, it’s just the hash, right? Also, what’s HTTPS / SSL certificates good for?Even normal HTTPS traffic should be sent in an encrypted manner, what could CloudFlare detect there?
(DIR) Post #ASZAu7YAEeeaQpqs7c by w@arachnid.town
2023-02-11T09:58:12.835824Z
0 likes, 0 repeats
@Erik @koherecoWatchdog @futzle It's encrypted to Cloudflare, decrypted, then if configured re-encrypted to your server. Also the password is not sent hashed, it's sent in the request which subsequently gets hashed and compared to the database. Hashing is to prevent the passwords from being recovered in case the database gets leaked. At least that's how it works in most configurations.
(DIR) Post #ASZHsoQyWQ2MXBoQwC by koherecoWatchdog@freeradical.zone
2023-02-11T11:14:06Z
1 likes, 0 repeats
@Erik @futzle #Cloudflare is a #walledGarden b/c access is restricted. It’s not open. Certain browsers & networks are blocked. A crude & unreliable basis for access is used, which makes CF a lousy way to avoid DDoS. It’s also a sham. That is, if an attack happens, the gratis contract by CF is just the bait to make you dependent. You will be told you need to pay a premium for continuity.
(DIR) Post #ASZHtCQ5LNaMvNa3sm by koherecoWatchdog@freeradical.zone
2023-02-11T11:15:53Z
1 likes, 1 repeats
@futzle @Erik *Availability* is what CF fools customers into thinking they are getting, but it’s self-defeating the same way #SpamHaus is. That is, they block legit traffic under the perception of protecting legit traffic.