> JUST STOP MASS BLOCKING. You literally have no reason to. The only reason would be if you have an agenda to stop people from anonymously accessing information
This is my take, who cares were people accessing the site is from. The only places that should kind-of care are Banking Sites.
The main use case of Cloudflare is not blocking for fun. We use it to defend against DDoS and and botting which are existential threats to our business.
Banking sites and anybody who suffers from any sort of attack, whether it's scraping, DDoS, bots, bruteforcing...
Does everybody get those attacks? Probably not, however, Cloudflare centralizes the attacks into a single IP reputation database so, if at some point, a certain node was abused on x site that uses Cloudflare, anybody who is routed through that node will have a poor experience browsing CF sites.
This approach of centralizing IP reputations has its own flaws and benefits, Tor Nodes aren't inherently given a bad reputation, it just happens that if 90 people are using the tool for all the good things, 2 assholes can abuse the IPs and have them blacklisted on almost any website, whether it's Cloudflare, Imperva, Akamai, PX, you name it. Cloudflare is the most known name but there are tons of other E2E/B2B providers that don't show up as often.
Some businesses just have no reason to interact with certain IP sets.
For example if you are running a SaaS website which only caters to customers in the US what is the advantage of letting IPs from China or Russia access your service? Those IPs are not going to utilize your service because you don’t offer services outside of the US; since the IPs cannot be used for legitimate actions they can therefore only be used for illegitimate actions and should be blocked.
People travel. This kind of approach is not uncommon and so annoying. Like Vodafone which didn't let me access the right country's version of their page to pay my bill while abroad. And Ing which listed only the local app in play store - couldn't download the Australian version in the UK.
That's literally being hostile to your customers where they may be under more pressure than normal to resolve whatever they're trying to achieve.
Why would a God-honoring American want to travel overseas in the first place? We have more natural wonders, more freedom and equality than any other country in the world. We're also unique in that we're the only nation to be a melting pot of different cultures, so you can literally find anywhere in the world in the USA.
Chances are they won’t block IPs in the countries they have employees, and/or they’ll require a VPN for them.
I’m honestly a bit surprised to see so many people attempting to counter the idea that some businesses don’t need to be accessible from every region in the world.
I’m sure everyone on this site can come up with reasons why some online businesses should support a worldwide audience. That does not mean every online business needs to set out to support the entire world when it makes no sense for them or 99.999%+ of their legitimate users.
Personally, I wouldn't deliberately signal "I'm too small time for you Fortune 500 outfits to bother with".
But even if you don't mind doing so... Our company didn't have any outside-the-US employees - until we did. We hired one remote in Canada, and we hired some contractors in the Philippines and Portugal. So you're creating a situation where either you have to fix your ability to let people connect from outside the US right now (with all the security issues that may cause, which you also have to fix right now), or else you lose a customer each time something like that happens.
I once did, to make a payment. Only at the end did I realize I was in a TOR window. All went through fine. I guess there is no reason not to, if login and 2F check out.
i've never used tor, but wouldn't it be better operational security to not use tor for banking to avoid being fingerprinted/identified, if one cared about remaining anonymous?
Fingerprinted/ID'ed by who? There is effectively no difference in security with tor when it comes to the end points. The main purpose of tor is to prevent anyone in the middle from getting any information.
All they'll get is a strong ID on your exit node. That node is, of course, shared by a ton of people and so trying to pick apart the traffic is going to be very difficult
This is my take, who cares were people accessing the site is from. The only places that should kind-of care are Banking Sites.