I don't want to lie about my UA but I have to change it in order to avoid Cloudflare's CAPTCHA. Cloudflare passes Tor Browser's UA for IP addresses of Tor exit nodes. Btw, Cloudflare distinguishes its users by TLS/SSL fingerprinting as well as by HTTP headers including UA. I must doubt that organizations encouraging TLS/SSL want fingerprinting more beyond security. Hey, Tor Project and EFF, don't be evil...