Hello IETF, Today when I tried to go read a standard on the ietf.org website I was met with a CloudFlare CAPTCHA page. By using CloudFlare IETF is actively blocking Tor connections to IETF page. CloudFlare also works as man-in-the-middle and all encryption to ietf.org is null and void which means IETF is actively helping the authoritarian governments weaken the encryption on the Internet. CloudFlare also requires proprietary javascript to be run by Tor users who want to access websites which makes fingerprinting them very easy. Because CloudFlare is a man-in-the-middle it can also inject websites with malicious javascript, such as fingerprinting javascript. CloudFlare also collects all connection data and is subject to US secret courts and thus using it is directly contributing to the mass surveillance of the Internet. Tor project has also finally started noticing this[1]. And I wrote a small thing[2] about it on my website recently as well. IETF using CloudFlare is a very bad thing for the security and neutrality of the Internet and this should be fixed immediately. If you think there is some other place where I could notify people about this then please send me an email. [1]: https://trac.torproject.org/projects/tor/ticket/18361 [2]: https://GNU.moe/thoughts/cloudflare.html