More often than not, admins are interested in alternatives. When they hear there are no gratis alternatives, they shut down. CF is deceptively gratis. That is, the gratis plan is for relatively low consumption. When a service comes under attack which then leverages the defense admins signed up for, Cloudflare taps them on the shoulder and says: hey, you’re exceeding the bandwidth of the gratis plan… time to switch to premium. So the “free” evaporates.
Slightly more clever admins will use CF DNS and maintain their site in a non-proxied state (sparing their users from Cloudflare exclusion and over-sharing). Then when an attack hits they just have to flip a switch and CF is put into play. That switch can even be scripted to happen automatically.
Even more clever admins (e.g. infosec.pub) are very knowledgeable about how to do security properly without offloading their security problems onto everyone else.
I don’t really know the guy but I’m sure he is quite busy. He also runs infosec.exchange and a Threads-defederated variant of that, and an onion mirror, and fedia.io. fedia.io is on kbin/mbin and thus very buggy and he seems to put a lot of energy into chasing those bugs. IIRC he mentioned his bills are like $3k/month for one of or all of those nodes. Wouldn’t hurt to ask but the question should probably come direct from the interested admins. Maybe they could hire him.
More often than not, admins are interested in alternatives. When they hear there are no gratis alternatives, they shut down. CF is deceptively gratis. That is, the gratis plan is for relatively low consumption. When a service comes under attack which then leverages the defense admins signed up for, Cloudflare taps them on the shoulder and says: hey, you’re exceeding the bandwidth of the gratis plan… time to switch to premium. So the “free” evaporates.
Slightly more clever admins will use CF DNS and maintain their site in a non-proxied state (sparing their users from Cloudflare exclusion and over-sharing). Then when an attack hits they just have to flip a switch and CF is put into play. That switch can even be scripted to happen automatically.
Even more clever admins (e.g. infosec.pub) are very knowledgeable about how to do security properly without offloading their security problems onto everyone else.
Do you think the Infosec.pub admin would be willing to give some pointers to .World and .Works? That might be an interesting angle to persue.
I don’t really know the guy but I’m sure he is quite busy. He also runs infosec.exchange and a Threads-defederated variant of that, and an onion mirror, and fedia.io. fedia.io is on kbin/mbin and thus very buggy and he seems to put a lot of energy into chasing those bugs. IIRC he mentioned his bills are like $3k/month for one of or all of those nodes. Wouldn’t hurt to ask but the question should probably come direct from the interested admins. Maybe they could hire him.