@PsychoLlama don't you end up placing a lot of trust in Cloudflare with this approach? It seems like a great solution that solves a few big problems, but I believe Cloudflare is remotely decrypting (if its leaving your hardware encrypted) and re-encrypting the contents. If that's true, Cloudflare could MITM attack or read/collect/share your data. May not matter too much if its only serving up a public blog, but I'm hesitant to serve anything private/sensitive over this solution.
@deriver Great point. I think you're right, they control the certificates so they have a dangerous amount of power. I hadn't thought about that... 😦
@deriver @PsychoLlama I haven't used these kind of services, I actually rather the VPN but I find it interesting in case you have to expose a service to non-secure networks. With the VPN you have to connect to the VPN first before accessing to the service. Sometimes you need a service exposed directly without the need to configure a VPN access.
These kind of tools sound interesting for people who normally self host their applications.
Fosstodon is an English speaking Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.