July 06, 2015 10:30PM
The Internet is a cooperative system: CNAME to Dyn DNS outage of 6 July 2015
CNAME
DNS
Post Mortem
Today, shortly after 21:00 UTC, on our internal operations chat there was a scary message from one of our senior support staff: "getting DNS resolution errors on support.cloudflare.com", at the same time as automated monitoring indicated a problem....
April 21, 2015 11:14PM
Contributing back to the security community
CFSSL
RSA
Events
Security
This Friday at the RSA Conference in San Francisco, along with Marc Rogers, Principal Security Researcher at CloudFlare, I'm speaking about a version of The Grugq's PORTAL, an open source network security device designed to make life easier and safer....
March 19, 2015 3:15PM
OpenSSL Security Advisory of 19 March 2015
Bugs
OpenSSL
Vulnerabilities
SSL
Today there were multiple vulnerabilities released in OpenSSL, a cryptographic library used by CloudFlare (and most sites on the Internet)....
February 26, 2015 1:25AM
Enforce Web Policy with HTTP Strict Transport Security (HSTS)
SSL
HTTPS
Dashboard
Security
Crypto Week
HTTP Strict Transport Security (HSTS, RFC 6797) is a web security policy technology designed to help secure HTTPS web servers against downgrade attacks....
September 24, 2014 6:12PM
Bash vulnerability CVE-2014-6271 patched
WAF Rules
Vulnerabilities
This morning, Stephane Chazelas [disclosed](http://seclists.org/oss-sec/2014/q3/649) a vulnerability in the program bash, the GNU Bourne-Again-Shell....
June 18, 2014 5:00PM
Q&A with Ryan Lackey
CryptoSeal
Crypto
Acquisitions
I started using the Internet when I was young—in the early 1990s, before I was a teenager. I was drawn to security for two main reasons....