Everybody gets WebSockets

Published on by John Roberts.

Two summers ago, with a seemed-big-at-the-time network of 28 datacenters, not long after introducing Medellin, CloudFlare introduced support for WebSockets, initially for our Enterprise customers. CC BY 2.0 image by Marcin Wichary Today, with our network nearing 80 global locations, we're pleased to announce support for WebSockets for all our customers, including Enterprise, Business, Pro, and Free, with resources allocated by plan level. What are WebSockets? If…

Dan Kaminsky Will Be Taking Your Questions At Our DNS Meetup Next Week In San Francisco

Published on by Dani Grant.

Our last DNS meetup was a packed house with Paul Mockapetris, the original inventor of DNS. We learned why DNS answers have a question count but always only one question, why underscores aren’t allowed in domain names, and the history of how DNS came to be. Our next meetup is with the infamous Dan Kaminsky –– there’s even a DNS attack named after him, the Kaminsky attack.…

Yet Another Padding Oracle in OpenSSL CBC Ciphersuites

Published on by Filippo Valsorda.

Yesterday a new vulnerability has been announced in OpenSSL/LibreSSL. A padding oracle in CBC mode decryption, to be precise. Just like Lucky13. Actually, it’s in the code that fixes Lucky13. It was found by Juraj Somorovsky using a tool he developed called TLS-Attacker. Like in the “old days”, it has no name except CVE-2016-2107. (I call it LuckyNegative20) It’s a wonderful example of a padding…

Introducing CloudFlare Origin CA

Published on by Patrick R. Donahue.

Free and performant encryption to the origin for CloudFlare customers In the fall of 2014 CloudFlare launched Universal SSL and doubled the number of sites on the Internet accessible via HTTPS. In just a few days we issued certificates protecting millions of our customers’ domains and became the easiest way to secure your website with SSL/TLS. At the time, we "strongly recommend[ed] that site owners install…

Stronger protection and more control over security settings with CloudFlare’s new cPanel plugin

Published on by Rahul Mahajan.

CloudFlare has released a new version of our plugin for cPanel with two new features and more control over the security settings of your website. The new plugin (v6.0) uses the latest cPanel PHP-based APIs, and is completely re-architected to make adding new features easier, allowing for more frequent updates. We’ve always focused on making integration with CloudFlare as easy as possible. As a customer of…