FRIDAY, JULY 3, 2026 48° E  /  GLOBAL TECH · SUMMARISED SUBSCRIBE
AI, business, devices, policy — global tech, summarised every 30 minutes.
Security · 1h ago

Cloudflare Flexible SSL leaves origin traffic exposed

By Meridian48 News Desk · Summarised from DEV Community ·

Cloudflare's Flexible SSL mode encrypts traffic between visitors and Cloudflare but leaves the connection between Cloudflare and the origin server unencrypted. This means session cookies, login data, and other sensitive information can be intercepted over the public internet. The fix is to switch to Full (strict) mode and install a valid certificate on the origin server.

Meridian48 take
The article correctly highlights a common misconfiguration, but the risk is often overstated for sites behind Cloudflare's private network; still, Full Strict is the right default.
Read the full reporting
Cloudflare's Flexible SSL looks secure. It isn't. →
DEV Community
cloudflaressl-tls
More security briefs
Go deeper on security
AllAIStartupsBusinessDevicesPolicySecurityDev ToolsPakistan