Hey guys, For my home server I am using a Cloudflare domain name to access it, but I noticed today that my connections are secured using the Google Trust Services LLC certs, rather than the Let’s Encrypt certs Nginx Proxy Manager uses… so I’m assuming that cloudflare is having a ball sniffing all my traffic before forwarding my requests to my server…

Is there a way around this? Do other registrars do this??

Thanks!

  • brygphilomena@lemmy.world
    link
    fedilink
    English
    arrow-up
    17
    ·
    1 year ago

    Are you using cloudflares protection or proxy? That orange toggle next to the a record?

    If so, then cloudflare is acting as a middle man and will use their SSL certs.

    • 🅱🅴🅿🅿🅸@sh.itjust.worksOP
      link
      fedilink
      English
      arrow-up
      4
      ·
      edit-2
      1 year ago

      Ohhh wow I can’t believe I forgot about that, I feel so dumb hahaha.

      Are there any benefits to keeping this switched on? Other than than the security I mean, is the tradeoff between privacy and security worth it in your opinion?

      • brygphilomena@lemmy.world
        link
        fedilink
        English
        arrow-up
        6
        ·
        1 year ago

        That’s something you’d have to decide in your threat model.

        Do you think cloudflare, which is trusted by many, many large organizations would do anything malicious with your traffic? It’s unlikely, but if that is something your concerned about them turn it off. I don’t think for most self hosted services it’s necessary but I also don’t think it matters either way.