The Cloudflare mTLS vulnerability - A Deep Dive Analysis
The Backend Engineering Show with Hussein Nasser
00:00
Cloudfare's Certificate Rejection Check
Cloudfare knows the website you're visiting because you're technically connecting to cloud fly anyway. CDN sees everything, by the way, if you have a CDN on front of your back end, they need to decrypt every single request you're sending. They are a reverse proxy. They need to terminate TLS. And it's responsible for acting as a bridge between the user and the various upstreams. Upstreams might include other services within cloud flares such as worker and caching.
Transcript
Play full episode
