Comment by jdrc

What are you giving Cloudflare here? You're running a tunnel daemon and piping a network process to it. There's no exchange of for example your private SSH keys.

If anything this is letting people more easily self host their own version of 'BigCorp cartel' apps like mail, code hosting, etc.

Most people here work for BigCorp cartel or aspire to do so

Hacker News hasn't been very "hacker" in a long time. Still a decent place for tech news.

Sure. Just make IPv6 work everywhere flawlessly, and then all of our devices can easily access all of our other devices, we can use whatever DNS scheme we want to return the IPv6 addresses to those devices, and then we won't need to punch through NAT firewalls and routers to reflect off corp-owned servers just to access machines trapped behind NAT firewalls! What could possibly go wrong?

the cf tunnel key was separate than your sshd key, there is no leak here. It's just a way of port forwarding upon a CDN network.

This configured system, unlike the rest of the way CloudFlare works with http, is actually end to end encrypted.

Why is it always the free software people who are the most judgemental about what I do with my software and who I trust with my time and money? AWS and Microsoft never gave a shit about what other vendors I'm in bed with.

I like your GNU license, I do not like your GNU license people.