this post was submitted on 16 Mar 2025
66 points (97.1% liked)

Buy European

3756 readers
2256 users here now

Overview:

The community to discuss buying European goods and services.

Matrix Chat

Rules:

  • Be kind to each other, and argue in good faith. No direct insults nor disrespectful and condescending comments.

  • Do not use this community to promote Nationalism/Euronationalism. This community is for discussing European products/services and news related to that. For other topics the following might be of interest:

  • Include a disclaimer at the bottom of the post if you're affiliated with the recommendation.

Feddit.uk's instance rules apply:

  • No racism, sexism, homophobia, transphobia or xenophobia
  • No incitement of violence or promotion of violent ideologies
  • No harassment, dogpiling or doxxing of other users
  • Do not share intentionally false or misleading information
  • Do not spam or abuse network features.
  • Alt accounts are permitted, but all accounts must list each other in their bios.

Benefits of Buying Local:

local investment, job creation, innovation, increased competition, more redundancy.

Related Communities:

Buy Local:

!buycanadian@lemmy.ca

!buyafrican@baraza.africa

!buyFromEU@lemm.ee

!buyfromeu@feddit.org

Buying and Selling:!flohmarkt@lemmy.ca

Boycott:!boycottus@lemmy.ca

Stop Publisher Kill Switch in Games Practice:!stopkillinggames@lemm.ee

Banner credits: BYTEAlliance

founded 1 month ago
MODERATORS
maam@feddit.uk
alex@jlai.lu
Lazycog@sopuli.xyz
circledot@feddit.org
Argyle13@lemmy.world
Sunshine@feddit.is
Sunshine@lemmy.ca
buyeuropean@lemmy.ca
buyeuropean@feddit.org
lazycog@feddit.uk
66
Where is lemmy.world hosted? (lemmy.world)
submitted 1 day ago by MousePotatoDoesStuff@lemmy.world to c/buyeuropean@feddit.uk
29 comments fedilink hide all child comments
 

I know lemm.ee is hosted in the EU, but I can't find that information for lemmy.world.

you are viewing a single comment's thread
view the rest of the comments
[–] Successful_Try543@feddit.org 1 points 20 hours ago* (last edited 20 hours ago) (1 children)

I don't get the 'man in the middle' part. Is the ssl key for the encrypted https connection not from LW, but from cloudflare?
It's still problematic that they have metadata of the connections.

[–] Evotech@lemmy.world 2 points 20 hours ago (1 children)

For cloudflare to encrypt the traffic they need the key.

[–] Successful_Try543@feddit.org 2 points 19 hours ago* (last edited 19 hours ago) (2 children)

But isn't for https the traffic supposed to be e2e encrypted between the client web browser and the server hosting the web page with the same cert? Does cloudflare decrypt and then re-encrypt the traffic data?

[–] Evotech@lemmy.world 2 points 10 hours ago* (last edited 10 hours ago)

Supposed and supposed... It's easier to manage encryption and certificates on a layer above, you can reencrypt backwards with some whatever cert

You can of course not use cloudflares infra for this but then you lost a lot of insight and features

[–] notabot@lemm.ee 3 points 18 hours ago (1 children)

You see the problem. Yes, cloudflare decrypt the request from the browser, inspect it, then reencrypt it and send it to the host server. Then they take the response, decrypt that, inspect it, reencrypt it and send it to the browser.

Basically there are two TLS flows, one from the browser to cloudflare, and one from clourflare to the host server. Between those, on the cloudflare system, both the traffic and response are in plain text. That includes usernames, passwords (for HTTP basic auth anyway) and any sensitive data you send or receive.

Given that they front sonewhere between 19 and 40% of all websites, d£pending on whose stats you trust, that should be pretty alarming.

[–] Successful_Try543@feddit.org 1 points 16 hours ago

Thank you. I didn't know that.