WordPress Pingback Attacks and our WAF
2014-03-11
At CloudFlare a lot of our customers use WordPress, that's why we have our own plugin, we hang out at WordCamp and we wrote a WordPress specific ruleset for our Web Application Firewall....
ECDSA: The digital signature algorithm of a better internet
2014-03-10
This blog post is dedicated to the memory of Dr. Scott Vanstone, popularizer of elliptic curve cryptography and inventor of the ECDSA algorithm. He passed away on March 2, 2014....
It's Go Time on Linux
2014-03-05
Some interesting changes related to timekeeping in the upcoming Go 1.3 release inspired us to take a closer look at how Go programs keep time with the help of the Linux kernel. Timekeeping is a complex topic and determining the current time isn’t as simple as it might seem at first glance....
Introducing lua-capnproto: better serialization in Lua
2014-02-28
When we need to transfer data from one program to another program, either within a machine or from one data center to another some form of serialization is needed....
CloudFlare Publishes Transparency Report for 2013
2014-02-27
On January 27, the Department of Justice and the Director of National Intelligence announced a change in rules governing the disclosure of National Security Orders....
Cloudflare Acquires StopTheHacker
2014-02-24
We're excited to announce that Cloudflare has acquired the anti-malware firm StopTheHacker. I wanted to share a little bit about the rationale behind the acquisition and what to expect from the two teamed up companies going forward....
Good News: Vulnerable NTP Servers Closing Down
2014-02-23
On Monday, February 10th, CloudFlare experienced a large DDoS attack, with nearly 400Gbps of NTP attack traffic hitting our network. ...
Staying up to date with the latest protocols: SPDY/3.1
2014-02-17
Back in June 2012 CloudFlare started a beta rollout of Google's then new SPDY protocol and we took a detailed look at how SPDY makes web sites faster....
Introducing Strict SSL: Protecting Against a On-Path Attack on Origin Traffic
2014-02-14
At CloudFlare, we are always looking for ways to improve the security of our customers’ websites. One of the features we provide is the ability to serve their website encrypted over SSL/TLS. ...
Technical Details Behind a 400Gbps NTP Amplification DDoS Attack
2014-02-13
On Monday we mitigated a large DDoS that targeted one of our customers. The attack peaked just shy of 400Gbps. We've seen a handful of other attacks at this scale, but this is the largest attack we've seen that uses NTP amplification....
Stories from our recent global data center upgrade
2014-01-30
It takes a lot of work to stop attacks and to help make the web faster. Over the past six months, our entire team has contributed in every way to more than double the capacity of our global network...
CloudFlare DNS is simple, fast and flexible
2014-01-30
Over the past few years, the CloudFlare blog has covered a great range of different topics, drilling down into the technology we use to both protect websites from attack, and optimise them so that they load faster for visitors....
Killing RC4 (softly)
2014-01-29
Back in 2011, the BEAST attack on the cipher block chaining (CBC) encryption mode used in TLS v1.0 was demonstrated. At the time the advice of experts (including our own) was to prioritize the use of RC4-based cipher suites....
CloudFlare Transparency Report on National Security Orders
2014-01-27
The Department of Justice and the Director of National Intelligence announced a change in rules governing the disclosure of National Security Orders, including National Security Letters (NSLs)....
Protect Your Sites With Rapidly Deployed WAF Rules
2014-01-21
An attack on your site could be catastrophic. Even a small attack can have major implications. Responding quickly to an attack is imperative. ...
Moving beyond the DC Circuit Court Decision on the FCC’s Open Internet Order
2014-01-17
CloudFlare is a strong supporter of a free and open Internet. We believe in both fair and free markets and effective regulation to achieve that goal. That is why we read the recent United States Court of Appeals for the DC Circuit’s opinion in Verizon v. FCC with great interest....
A Day in the Life of a Technical Support Engineer at CloudFlare - Marty Strong, London
2014-01-16
As a Technical Support Engineer I get to work with many different members of the CloudFlare family and with customers from all around the world. Each day is very different to the next, and of course, some days stand out more than others....
Understanding and mitigating NTP-based DDoS attacks
2014-01-09
Over the last couple of weeks you may have been hearing about a new tool in the DDoS arsenal: NTP-based attacks. These have become popular recently and caused trouble for some gaming web sites and service providers....
Bienvenido a Chile: Cloudflare's 24th Data Center Now Live!
2014-01-08
Cue up the fuegos artificiales again! Our data center in Valparaiso, Chile marks the 24th in our global network, our second south of the equator and the first in Latin America. ...
