Regardless of whether or not you provide your own SSL certificates, cloudflare still uses their own between their servers and client browsers. So any SSL encrypted traffic is unencrypted at their end before being re-encrypted with your certificate. How can such an entity be trusted?
The good old “eh what do i care i dont have anything to hide” approach to security and privacy. Excellent!
“If you have nothing to hide then you dont have to worry!”
I wont respond further in this thread because i already know how these discussions go.
Why would anyone argue that other companies are saints? Are you aware you are in /r/selfhosting here? The whole point is to regain control of your own data, be in charge of who stores what, where and how.
But if you don’t trust Cloudflare, who do you trust, and why? Do you trust your ISP? Do you trust Intel or AMD? The people who manufacture your router or other networking kit? People’s trust boundaries exist at different levels. If you are happy with your own, fine, but you don’t get to tell other people that they are doing it wrong just because their boundaries are different.
As i already replied to you in another comment… that is the definition of selfhosting of this subreddit, which you are now participating in.
And no, i dont trust anyone. I dont trust my ISP. I dont trust Intel or AMD. I dont even own a computer. And my house is powered by a diesel generator only 2 hours per day, while its covered completely in aluminium foil. I am writing these reddit comments on post-it notes and every few minutes i send one of my kids on their bicycle to drive to a random neighbour and they post them for me.
But youre not getting any more post-its from me, dont worry.
That’s not the only point of selfhosted. For me I see it like a mobile app, that’s centrally located. What I would store on my phone is now on my server, which is better if I lose my phone (theft, technical issues, w/e).
Apps just work better for me as progressive web apps and not natively installed applications, and it’s how I prefer it. Yes, you risk not being able to access it if the internet goes out and yes it basically requires a sys admin to properly secure it, but it’s not just about taking back ownership.
I use both, Google and Nextcloud. Both have a copy of everything. I trust Google with my data, always have. Whatever spying going on in the background that occurs has not affected me in 20 years, outside of it initially starting to show search results for gay or pregnant or whatever, which they resolved a long time ago.
On top of this, you live with the algorithms. You train them to do what you want and don’t let them have data you don’t want them to have. Like with incognito, although they’re currently being sued for still trying to track you, which is a lawsuit I’m on despite being a loyal customer.
Anyway, don’t share your devices without multiple user profiles. Android has a “guest” feature to share your phone. Fire stick and basically everything has multiple user profiles. Everyone gets their own algorithm trained. As far as the company and the insights, use paid accounts. My Gmail is paid running on my own domain.