I know lemm.ee is hosted in the EU, but I can’t find that information for lemmy.world.
FYI everyone who’s sharing a Cloudflare location is only mildly doxxing themself
How dare you make us click a link and read for ourselves? Not what I signed up for.
Well of course not, you joined lemm.ee
After re-reading the fine-print I hereby fully commit my soul to the spirit of lemmy.
They probably use Cloudflare for Loadbalancing and Anti DDOS. This doesn’t mean it is hosted on Cloudflare, it is only a proxy. The point is not to show you the real IP so you can’t attack the origin server.
AfaIk, they are hosted at Hetzner, so physically in Germany or Finland.
Edit: Source https://lemmy.world/post/22397634
Edit 2: The ip online tool on the website below indicates that it may actually be physically hosted in US (on a virtual server as, according to Wikipedia, Hetzner doesn’t offer bare metal servers in US).https://www.ipaddress.com/website/lemmy.world/
Edit 3: The IP is from Cloudflare, the servers are from Hetzner in EU.
AfaIk, they are hosted at Hetzner, so physically in Germany or Finland.
If I remember correctly, the main servers are in Hetzner’s data centre in Finland with back-ups in Germany. Although they have a complex set-up so it may not be as cleanly divided up these days.
I suspect half the Fediverse runs on Hetzner at this point.
The US IP address is for Cloudflare, who are acting as a front end for things like DDoS protection. A lot of lemmy servers use them, which is unfortunate, but there don’t seem to be any viable European alternatives.
You can check the details with the
whois
command. The relevant bit when querying for one of their addresses is:NetRange: 104.16.0.0 - 104.31.255.255 CIDR: 104.16.0.0/12 NetName: CLOUDFLARENET NetHandle: NET-104-16-0-0-1 Parent: NET104 (NET-104-0-0-0-0) NetType: Direct Allocation OriginAS: AS13335 Organization: Cloudflare, Inc. (CLOUD14) RegDate: 2014-03-28 Updated: 2024-09-04 Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv Ref: https://rdap.arin.net/registry/ip/104.16.0.0
Thank you. So that’s why you ‘see’ an US IP address while the physical server may be located anywhere, e.g. in Germany.
By looking at their Wikipedia, I’ve already found out that Cloudflare doesn’t do hosting.
Cloudflare don’t hoat sites, but they do end up being a ‘man in the middle’ attack on any site they proxy for, regardless of where that site is nominally hosted. That ends up exposing all traffic on those sites to a US corporation, and ultimately the US government. Considering that Cloudflare proxy somewhere between 19% and 40% of all websites, I think that’s pretty alarming.
I don’t get the ‘man in the middle’ part. Is the ssl key for the encrypted https connection not from LW, but from cloudflare?
It’s still problematic that they have metadata of the connections.
Hetzner also has US servers now, FYI.
It’s Germany. You can tell because the ToS mentions the service being subject to German law.
You have all information here.
So Server Host for lemmy.world is Cloudflare, Inc.
Cloudflare doesn’t do the hosting, just DNS/domain related related stuff. LW says they’re hosting at Hetzner.
lemm.ee is also hosted on Cloudflare.
Hosting tools point to Toronto, Canada via Cloudflare.