A privacy-centric hosting company having in-house DDOS-protection would be ideal?
This basedflare thing may be better than CF, though it feels exactly like CF for me an end user. Their error message is unhelpful too:
Verifying your connection to basedflare.com
This process is automatic, please wait a moment…
Error: Browser does not support WebAssembly.
A more-friendly error message would be: Use the “Standard” Security Level in Tor Browser; “Safer” “Safest” wouldn’t work for this. (Brave Search actually says something like that, nice to Tor users, though I seldom use Brave Search…)