Comment by ThePhysicist

8 years ago

This is not correct in my understanding: The sites with certain options enabled produced the erroneous behavior, but the data that would get leaked through this behavior could be from any site that uses Cloudflare SSL (as this requires Cloudflare to tunnel SSL traffic through their servers, decrypt it and re-encrypt it with their wildcard certificate). So if I understand correctly anyone using the (free) Cloudflare SSL service in combination with their DNS is affected.

2 comments

ThePhysicist

dbmnt 8 years ago

I was wrong about the nature of the proxy issue, but right about DNS-only customers. Customers using only the free DNS service were not impacted by this at all, because traffic never flowed through the proxies.

ThePhysicist 8 years ago

Ah yes, sure if you only use DNS then your data never touches a CloudFlare server. Lucky you ;)