knowing when to trust a login page on a Cloudflare site (infosec.pub)

submitted 5 months ago* (last edited 5 months ago) by coffeeClean@infosec.pub to c/cybersecurity@infosec.pub

8 comments fedilink hide all child comments

Question for people willing to visit Cloudflare sites:

How do you determine whether to trust a login page on a CF site? A sloppy or naïve admin would simply take the basic steps to putting their site on Cloudflare, in which case the authentication traffic traverses CF. Diligent admins setup a separate non-CF host for authentication.

Doing a view-source on the login page and inspecting the code seems like a lot of effort. The source for the lemmy.world login page is not humanly readable. It looks as if they obfuscated the URLs to make them less readable. Is there a reasonably convenient way to check where the creds go? Do you supply bogus login info and then check the httpput headers?

you are viewing a single comment's thread
view the rest of the comments

[-] slazer2au@lemmy.world 2 points 5 months ago

You seem to make the assumption that CF is storing that level of your data. In all likelihood CF are inspecting the traffic for malicious intent and if there is nothing malicious the non metadata is dropped.

[-] coffeeClean@infosec.pub 1 points 5 months ago* (last edited 5 months ago)

You seem to make the assumption that CF is storing that level of your data.

What have I said that would imply a presumption of retention?

this post was submitted on 27 Mar 2024

11 points (76.2% liked)

cybersecurity

3157 readers

2 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 1 year ago

MODERATORS

shellsharks@infosec.pub

tweedge@infosec.pub