Regardless of whether or not you provide your own SSL certificates, cloudflare still uses their own between their servers and client browsers. So any SSL encrypted traffic is unencrypted at their end before being re-encrypted with your certificate. How can such an entity be trusted?
…not to mention now using cloud providers in lieu of setting up something at their homes. From someone who deals with “Imperial entanglements” (feds) many times, are any of those who praise Cloudflare with such high expectations going to admit that even Cloudflare - a U.S. owned and headquartered-based company - does NOT fall under the purview of U.S. cyber laws???
ARE YOU GUYS NUTS??!!??
TBH, acquiring even a small number of static IPs doesn’t really doesn’t cost that much, nor does having a stable energy source (thru a UPS) to have your very own littl’ mini lab/data center. I have 4 rack cabinets, 2 telco racks, and a small UPS tray for several UPSs to provide consistently ‘clean’ power against periodic electrical ‘hiccups’ (such as power going off for a few seconds).
And then there’s the matter of accessing your data. Cloudflare has full, unadulterated access - no matter how much they claim your privacy, blah, blah, blah. Does anyone ever read the EULAs? I seriously doubt it. And even if you did, they still have the right to ‘sniff’ and acquire your data, anonymize your data, and utilize it to sell to other companies - perhaps Google? Perhaps even the Imperium?
Here’s some more info - your ISP still have access to your data regardless if you host it yourself or not. Even if you’ve decided to go through Cloudflare; you really don’t gain anything.
So, for me, using Cloudflare gains me *nothing*.