• NekuSoul@lemmy.nekusoul.de
    link
    fedilink
    arrow-up
    6
    ·
    3 days ago

    Some routing instance in between your users and your server might.

    Although that should only be possible if the user has a hijacked client or you’re not using HTTPS. Or am I forgetting something?

    • hitmyspot@aussie.zone
      link
      fedilink
      arrow-up
      7
      ·
      3 days ago

      Cloud flare issue certificates on your behalf when they cache. They also have nameservers. However, I assume that is only for their customers.

    • Scipitie@lemmy.dbzer0.com
      link
      fedilink
      arrow-up
      1
      ·
      3 days ago

      I miss framed this: the concern here for me is not a malicious attack but that you’re still affected in terms of routing: your service becoming unavailable because your hoster or their ISP relied on cloudflare.