this post was submitted on 09 Aug 2023
140 points (100.0% liked)

Technology

37745 readers
59 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
 

The author was blocked from accessing a work website due to issues with Cloudflare's browser integrity checks. Despite having credentials to prove his identity, an attempt to bypass the checks by disabling fingerprinting in Firefox resulted in Cloudflare blocking all access. He could still access the site on Chrome, showing the block was based on his browser configuration. This left the author unable to complete important work tasks and questioning how much control individuals really have over authentication in an increasingly centralized web ecosystem dependent on remote attestation. It highlights the need for transparency and user agency in how identity verification is implemented online.

you are viewing a single comment's thread
view the rest of the comments
[–] LoafyLemon@kbin.social 20 points 1 year ago (8 children)

I feel like this is way overblown. If you tamper with browser headers and user agents, you will be blocked.

If you use incognito mode or TOR, you won't be blocked, and in fact, cloudflare offers onion routes for your website so the traffic is fully secured.

If it weren't for cloudflare, I would have to pay three times the server costs and put twice as much time into managing it.

[–] Squiddles 9 points 1 year ago

The author explicitly says that they didn't tamper with headers or user agent. I'm neutral/not knowledgeable on the rest of your comment, but wanted to clarify that point.

load more comments (7 replies)