Integrating our Integrations: Getting WHMCS and cPanel Talking
2015-03-23
CloudFlare provides integrations for several of the most popular hosting control panels and billing systems such as WHMCS, cPanel, and Plesk....
OpenSSL Security Advisory of 19 March 2015
2015-03-19
Today there were multiple vulnerabilities released in OpenSSL, a cryptographic library used by CloudFlare (and most sites on the Internet)....
Announcing Virtual DNS: DDoS Mitigation and Global Distribution for DNS Traffic
2015-03-10
It’s 9am and CloudFlare has already mitigated three billion malicious requests for our customers today. Six out of every one hundred requests we see are malicious, and increasingly, more of those bad requests are targeting DNS nameservers. ...
Deprecating the DNS ANY meta-query type
2015-03-06
DNS, one of the oldest technologies running the Internet, keeps evolving. There is a constant stream of new developments, from DNSSEC, through DNS-over-TLS, to a plentiful supply of fresh EDNS extensions....
Unser neuer 31er Data Center: Düsseldorf
2015-03-05
Hallo Düsseldorf. Nestled in the center of the Lower Rhine basin lies the bustling city of Düsseldorf, capital of Germany’s most populous state, Northern Rhine-Westphalia. ...
No upgrade needed: CloudFlare sites already protected from FREAK
2015-03-04
The newly announced FREAK vulnerability is not a concern for CloudFlare's SSL customers. We do not support 'export grade' cryptography (which, by its nature, is weak) and we upgraded to the non-vulnerable version of OpenSSL the day it was released in early January....
Protecting web origins with Authenticated Origin Pulls
2015-02-27
As we have been discussing this week, securing the connection between CloudFlare and the origin server is arguably just as important as securing the connection between end users and CloudFlare. ...
Thoughts on Network Neutrality, the FCC, and the Future of Internet Governance
2015-02-27
Today the United States Federal Communications Commission (FCC) voted to extend the rules that previously regulated the telephone industry to now regulate Internet Service Providers (ISPs)....
Enforce Web Policy with HTTP Strict Transport Security (HSTS)
2015-02-26
HTTP Strict Transport Security (HSTS, RFC 6797) is a web security policy technology designed to help secure HTTPS web servers against downgrade attacks....
Universal SSL: Encryption all the way to the origin, for free
2015-02-24
Last September, CloudFlare unveiled Universal SSL, enabling HTTPS support for all sites by default. All sites using CloudFlare now support strong cryptography from the browser to CloudFlare’s servers....
TLS Session Resumption: Full-speed and Secure
2015-02-24
At CloudFlare, making web sites faster and safer at scale is always a driving force for innovation. We introduced “Universal SSL” to dramatically increase the size of the encrypted web....
Do the ChaCha: better mobile performance with cryptography
2015-02-23
CloudFlare is always trying to improve customer experience by adopting the latest and best web technologies so that our customers (and their visitors) have a fast and a secure web browsing experience....
End of the road for RC4
2015-02-23
Today, we completely disabled the RC4 encryption algorithm for all SSL/TLS connections to CloudFlare sites. It's no longer possible to connect to any site that uses CloudFlare using RC4....
SSL Week Means Less Weak SSL
2015-02-23
I'm excited to announce that today kicks off SSL Week at CloudFlare. Over the course of this week, we'll make a series of announcements on what we're doing to improve encryption on the Internet....
Get Started with CloudFlare ServerShield for Plesk
2015-02-09
CloudFlare has partnered with Parallels, the leading hosting solutions provider, to make server protection, content acceleration and malware removal easier than ever....
Updating the DNS Registration Model to Keep Pace with Today’s Internet.
2015-02-05
CloudFlare is, arguably, the largest third-party DNS Authoritative operator in the world. We manage well over 1 million domains and have registrations in almost every TLD open for registrations....
Path MTU discovery in practice
2015-02-04
Last week, a very small number of our users who are using IP tunnels (primarily tunneling IPv6 over IPv4) were unable to access our services because a networking change broke "path MTU discovery" on our servers. ...
DNSSEC Done Right
2015-01-29
I’ve been working on DNSSEC evolution for a long time as implementor, IETF working group chair, protocol experimenter, DNS operator, consultant, and evangelist. ...
Help us test our DNSSEC implementation
2015-01-29
Today is a big day for CloudFlare! We are publishing our first two DNSSEC signed zones for the community to analyze and give feedback on....
Flexible SSL & Wordpress: Fixing “Mixed Content” Errors
2015-01-21
As many are aware, CloudFlare launched Universal SSL several months ago. We saw lots of customers sign up and start using these new, free SSL certificates. For many customers that didn’t already have an SSL certificate, they were able to use “Flexible SSL”....