I had a few conversations with nullius before his disappearance via PM, and he was extremely annoyed with the way that the new cloudflare implementation was affecting his posting abilities here. Such a shame, as I miss reading his posts :/
I've been thinking if it would be possible to setup some sort or proxy for Bitcointalk, another site that shows a real time copy, and allows someone to post too. That way, the proxy can take care of the Javascript, and the user can just browse and post without it. It should be a paid proxy so spambots won't use it.
~ and thinks CloudFlare is a MitM attack vector. Well, just because you're paranoid doesn't mean they aren't out to get you...
He's not alone:
What I meant is that Cloudflare can see your unencrypted password when you log in. It's still encrypted from the real server to Cloudflare and from Cloudflare to you. So it's not blatantly insecure except in that Cloudflare is very probably an NSA honeypot, and it's not like the NSA is going to steal your password in order to scam people on bitcointalk.org or anything. If you use PGP for important communications and use a unique password, then IMO this addresses the plausible attacks well enough.