I recently stumbled across Cludflares trustpilot page and the reviews were completely mismatched from the way I have experienced people talk about them on forums. The reviews on trustpilot make them sound awful, but I have only seen recommendations for them on forums, often people say they are the best DNS provider.

Whats up with that? Does anyone know why there is such a disparity.

  • LainTrain@lemmy.dbzer0.com
    link
    fedilink
    arrow-up
    24
    arrow-down
    1
    ·
    edit-2
    4 months ago

    https://old.reddit.com/r/programming/comments/1d14rb7/cloudflare_took_down_our_website_after_trying_to/ is the most recent Cloudflare drama. They’ve been known to fuck customers before but I can’t really find specific examples. Obviously their protection can also be overzealous and block legitimate traffic too, which pisses off users as well.

    Beyond that there’s many more philosophical reasons to hate Cloudflare - they’re a highly centralised point of failure and like in the story linked above could at any time “alter the deal”, so to speak. As an advocate for the free and open internet I wouldn’t consider them a force for good any more than Google, Facebook or Amazon.

    They’re also hated for blocking privacy tools like Tor and blocking scraping, which does suck, but if cloudfail doesn’t work anymore you can still always search SHODAN for website title/headers to see if the LB is accessible directly via the internet. DNS management at medium sized corpos is usually a clusterfuck so it’s definitely a non-zero chance.

    • mox@lemmy.sdf.org
      link
      fedilink
      arrow-up
      26
      arrow-down
      1
      ·
      edit-2
      4 months ago

      As an advocate for the free and open internet I wouldn’t consider them a force for good any more than Google, Facebook or Amazon.

      They’re not only a centralised point of failure, but also a man-in-the-middle for so many sites that they can effectively track people all over the internet through web and DNS requests, and fingerprint browsers through CAPTCHA scripts, and even read people’s HTTPS traffic.

      I consider them a hostile actor.

      No organisation should have such pervasive access to people’s lives.

      • LainTrain@lemmy.dbzer0.com
        link
        fedilink
        arrow-up
        5
        arrow-down
        1
        ·
        4 months ago

        Yup. One of the vestiges of corporate internet. I tried to make a less ideological argument for wider appeal but I absolutely agree with you.

    • Kuinox@lemmy.world
      link
      fedilink
      arrow-up
      17
      arrow-down
      8
      ·
      edit-2
      4 months ago

      the most recent Cloudflare drama.

      It was made up by a shitty illegal crypto casino:
      https://news.ycombinator.com/item?id=41091144

      They’ve been known to fuck customers before but I can’t really find specific examples.

      Of course you can’t find specific examples because they are known to be great with customers.

      • LainTrain@lemmy.dbzer0.com
        link
        fedilink
        arrow-up
        8
        arrow-down
        7
        ·
        4 months ago

        shitty illegal crypto

        Opinions. Irrelevant. What is and isn’t “shitty” is a matter of opinion. Obviously fuck casinos and crypto scams but it ain’t relevant.

        The explanation you linked on the other hand is valid. I think it’s a little ridiculous though that Cloudflare can’t do any sort of geo-restriction instead. Just about everything is illegal somewhere.

        Of course you can’t find examples because

        I can’t be arsed.

        • atzanteol@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          10
          arrow-down
          3
          ·
          4 months ago

          I think it’s a little ridiculous though that Cloudflare can’t do any sort of geo-restriction instead.

          That’s not their job, it’s the job of the site operator.

          It’s a free-tier service ffs. Who runs a company on a free-tier?

          • Mubelotix
            link
            fedilink
            arrow-up
            5
            ·
            4 months ago

            It is their job. They advertise it as bot blocking

    • FrostyCaveman@lemm.ee
      link
      fedilink
      arrow-up
      5
      ·
      4 months ago

      see if the LB is accessible directly via the internet. DNS management at medium sized corpos is usually a clusterfuck so it’s definitely a non-zero chance.

      Can confirm lmao