Cloudflare's verify human challenge screen is so intrusive and frustrating that it will cost them their credibility IMHO, if it hasn't already. Some part of me feels that a properly designed cache should be able to handle any level of abusive traffic like a p2p cache would, and if it can't, then what are we all doing?

The problem is a cache needs cooperation with the backend for invalidation: Cloudflare’s robot check can apply to every page right before it talks to the backend at all

I wouldn’t put GitHub in the list: lots of people are annoyed that they use F/OSS code to train copilot.

> that are both profitable

none of these are currently profitable