@amolith@masto.nixnet.xyz @kev I'm more concerned with Clouflare's dominance (~75% of high-traffic websites on internet) regarding caching HTTPS in exchange for website owners private keys (in effect silently compromising all visitors to said sites as well). After digging into https://en.wikipedia.org/wiki/Cloudbleed and the technical solution at Cloudflare making this security bug possible, along with their transparency (https://www.cloudflare.com/transparency/), it became apparent that this is the biggest orchestrated HTTPS weakness out there serving US government.