@keithzg @timrichards @mpjgregoire i can't tell whether the OP is being ironic but its sure sounds like he isn't... Australia Post is most definately privatised, contrary to what the OP suggests.
Oh and its website is basically mitm attacked by amazon cloudfront, lol... the encryption is done in the usa and amazon sees EVERYTHING you do on #auspost (EDIT .com.au)
You can check this yourself, just try to access the site with a privacy-respecting browser like #TorBrowser, be sure to use safest mode.
If this is news to you, Tim, pls share to compensate for the misinfo, cheers
i was helping someone recently who didnt know about the problems associated with #cloudflare and stumbled across this.
its from the @torproject people and no longer available on the internet. it goes into great detail the problem with cloudflare from the perspective of #captchas but doesn't mention the broader threat that they prose as a global mitm attack.
why?
@confluency
POTENTIAL #SECURITY THREAT: The above website, #phanpyDotSocial is #CloudGlare and may be a #socialEngineering attack on #fediverse users to open them up to #accountTakeover.
If the above website asks one to login to ones #mastodon instance with their password then its a CloudGlare #phishing website/#honeypot.
We will not access on ethical grounds.
Tagging some boosters to warn them @njoseph @kkremitzki @michelin
#MITMAttack #MITMaaS #ClOudFlAre #fediverseAttack #cyberAttack
Our namesake, #DickSmith has rallied heavily against #aggregatorSites for #travel, like #Trivago, #TripAdvisor and #AirBnB.
Now imagine ENTIRE INTERNET AGGREGATION!
Someone ought contact Dick and tell him about #CloudFlare, #Amazon and #Akamai.
Forget buying a little ad in a corner of a #newspaper. He might need to buy the entire newspaper for a week to cover this.
We doubt even he has the funds to do this.
#entireInternetAggregation #internetAggregation #mITMAttack #mitMaaS #encryptionScam
The #IndependentAustralia.net publication is so independent it goes through US #LiteSpeed servers. Lol
Truthfully we had them on a higher pedestal than most #publications, but lost respect for them when we saw they allowed themselves to be #MITMd.
@StartpageSearch
There are two caveats to the above to be mindful of.
1. Unfortunately CloudFlare is used by #Visa last we checked but Visa have a bespoke setup that negates the need for the aforementioned '#CFRay'.
2. Be mindful that the #UBlock addon fetches all its #blockLists from CloudFlare. May be reason for not blocking or warning of the #MITMAttack, and why BCMA #addon is neccessary.
Don't trust BCMA.xpi? — Convert the #XPI to a #ZIP file and read the code.
https://notabug.org/dCF/deCloudflare/src/master/subfiles/about.bcma.md
@mcg
Hello Dear Matthew,
As we see (via a quick Ctrl+Shift+E in TorBrowser to bring up the NetworkTab), Brave goes through not only Amazon servers but through Cloudfront which is a type of MITM Attack like what Cloudflare has been conducting by stealth circa 2009.
Such a #MITMAttack makes Brave an Amazon asset, and thus not ethical in any way.
We are delighted to inform that Mozilla recently (finally, bless) approved the #BCMA Add-on by https://crimeflare.eu.org!
FIND IT HERE:
https://addons.mozilla.org/en-US/firefox/addon/stopcloudflare/
ADD-ON XPI FILE (repo also linked to on above page):
https://git.disroot.org/dCF/deCloudflare/src/branch/master/addons/releases
REPO README
https://git.disroot.org/dCF/deCloudflare/src/branch/master/subfiles/about.bcma.md
Though its a small step, we think it represents a watershed moment for the movement against the #MITMAttack on the web.
Block BigTech, Adelaide
find you on 
fediverse
Dick Smiths Fair Go Supporters
DeepSec Conference ☑
Dick Smiths Fair Go Supporters