Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
T
T
to_east2018-05-12 03:06:23
Digital certificates
to_east, 2018-05-12 03:06:23

Cloudflare_com origin certificate, is it necessary?

I welcome everyone!
I have nginx, ssl is not configured there, everything is stupid over http, but cloudflare masks everything perfectly and redirects all requests to https.
Please explain why you need origin and is it worth putting it on your server, if everything works like that?
Let me suggest that this is necessary in order for https to work when the orange cloud is turned off.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
D
Dmitry Tallmange, 2018-05-12
@to_east

When you have everything via http, then CF proxies your data, substituting its certificate. From the point of view of privacy and security, this is wrong, because the traffic between your service and CF is unencrypted, therefore, purely theoretically, they can intercept (save, modify) any user data, or yours.

Similar questions
D
Dimbos_s2020-08-01 19:58:24
How to set up an ssl certificate and VPS? 1Reply
E
E2016-04-04 17:29:55
Is it possible to accept payments if a free ssl cert from StarSSL is installed on the site? 2Reply
M
marshadow2020-10-22 07:38:18
How to rotate a normalized vector to another normalized vector? 3Reply
L
littleguga2016-04-05 18:08:15
Why does github send to http even though https is specified? 5Reply
S
Sergey Ryzhkin2020-08-07 08:48:02
Certificate renewal in AD DS, how to set up? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question