memes

18070 readers

1721 users here now

Community rules

1. Be civil

No trolling, bigotry or other insulting / annoying behaviour

2. No politics

This is non-politics community. For political memes please go to !politicalmemes@lemmy.world

3. No recent reposts

Check for reposts when posting a meme, you can only repost after 1 month

4. No bots

No bots without the express approval of the mods or the admins

5. No Spam/Ads/AI Slop

No advertisements or spam. This is an instance rule and the only way to live. We also consider AI slop to be spam in this community and is subject to removal.

A collection of some classic Lemmy memes for your enjoyment

Sister communities

!tenforward@lemmy.world : Star Trek memes, chat and shitposts
!lemmyshitpost@lemmy.world : Lemmy Shitposts, anything and everything goes.
!linuxmemes@lemmy.world : Linux themed memes
!comicstrips@lemmy.world : for those who love comic stories.

founded 2 years ago

MODERATORS

Tenthrow@lemmy.world

The_Picard_Maneuver@lemmy.world

The_Picard_Maneuver@startrek.website

411

Cloudflare (infosec.pub)

submitted 2 days ago by manucode@infosec.pub to c/memes@lemmy.world

46 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] nitrolife@rekabu.ru 3 points 1 day ago (1 children)

The funny thing is that the Lemmy nodes are synchronized with each other, and to calculate the real address of any Federation node, it is enough to raise a node, write a comment in the interested node, and then reply to yourself from that node. Done. Real IP in you node logs. However, everyone continues to use Cloudflare... This will only protect you from technically illiterate people.

[–] bdonvr@thelemmy.club 15 points 1 day ago (2 children)

The point of cloudflare isn't just to hide your real IP. It's the caching, bot scrape protection, etc.

[–] nightwatch_admin@feddit.nl 11 points 1 day ago (1 children)

And an ai slop trainer blocker, which is a fucking godsend.

[–] bdonvr@thelemmy.club 1 points 1 day ago (1 children)

Yeah. I'm going to figure out another solution but this is a big one.

[–] nightwatch_admin@feddit.nl 2 points 1 day ago (1 children)

If you are technically capable, Anubis is an option.

[–] bdonvr@thelemmy.club 2 points 1 day ago

Yeah that's what I'm looking at for my instance.

[–] nitrolife@rekabu.ru 1 points 1 day ago (2 children)

And all this is done with a single entry in hosts after receiving the real address. After all, knowing the real address, the bot doesn't have to go through cloudflare. The only good argument is caching, and it can be implemented independently. I find it strange to give all the traffic, including authorization, to cloudflare decrypt for the sake of caching.

[–] bdonvr@thelemmy.club 3 points 1 day ago* (last edited 1 day ago)

You can simply configure your server to reject non-cloudflare traffic, as you're supposed to if you're doing it properly.