Salt - The Cloudflare Blog

Deploying firmware at Cloudflare-scale: updating thousands of servers in more than 285 cities

March 10, 2023 2:00PM

We have a huge number of servers of varying kinds, from varying vendors, spread over 285 cities worldwide. We need to be able to rapidly deploy various types of firmware updates to all of them, reliably, and automatically, without any kind of manual intervention....

Chris Howells

Using Apache Kafka to process 1 trillion inter-service messages

July 19, 2022 2:00PM

Kafka Salt

We learnt a lot about Kafka on the way to 1 trillion messages, and built some interesting internal tools to ease adoption that will be explored in this blog post...

Matt Boyle

Future-proofing SaltStack

March 31, 2022 1:59PM

Research Post-Quantum Cryptography Security Salt

This blogpost chronicles the recent CVEs investigation, our findings, and how we are helping secure Salt now and in the Quantum future...

Lenka Mareková

Research Directions in Password Security

October 14, 2021 1:59PM

Research Security Product News Salt Passwords

We've been studying password problems, including malicious logins using compromised credentials. Here's what we learned and here's where we think we can go from here with safer password systems....

OPAQUE: The Best Passwords Never Leave your Device

December 08, 2020 12:00PM

Privacy Week Research Passwords Protocols Security

Imagine passwords for online services that never leave your device, encrypted or otherwise. OPAQUE is a new cryptographic protocol that makes this idea possible, giving you and only you full control of your password....

Tatiana Bradley

November 25, 2020 3:11PM

Moving Quicksilver into production

We previously explained how and why we built Quicksilver. This second blog post is about the long journey to production which culminates with Kyoto Tycoon removal from Cloudflare infrastructure and points to the first signs of obsolescence....

By

Geoffrey Plouviez

Product News , Quicksilver , Salt

August 21, 2020 12:00PM

How Cloudflare uses Cloudflare Spectrum: A look into an intern’s project at Cloudflare

As part of my onboarding as an intern on the Spectrum (a layer 4 reverse proxy) team, I learned that many internal services dogfood Spectrum, as they are exposed to the Internet and benefit from layer 4 DDoS protection....

By

Ryan Jacobs

Spectrum , Product News , Internship Experience , Salt

May 06, 2020 12:00PM

Cloudflare Bot Management: machine learning and more

This is the ongoing story of Bot Management at Cloudflare and also an introduction to a series of blog posts about the detection mechanisms powering it...

By

Alex Bocharov

Deep Dive , Bot Management , Bots , Security , Firewall

March 07, 2019 4:05PM

Diving into Technical SEO using Cloudflare Workers

With this post we illustrate the potential applications of Cloudflare Workers in relation to search engine optimization, which is more commonly referred to as ‘SEO’ using our research and testing over the past year making Sloth....

By

Guest Author

SEO , Serverless , Cloudflare Workers , Cloudflare Workers KV , Salt

October 05, 2018 7:30PM

Leave your VPN and cURL secure APIs with Cloudflare Access

We built Access to solve a problem here at Cloudflare: our VPN. Our team members hated the slowness and inconvenience of VPN but, that wasn’t the issue we needed to solve. The security risks posed by a VPN required a better solution....

By

Sam Rhea

Cloudflare Access , VPN , Security , Product News , Salt

February 21, 2018 7:00PM

Validating Leaked Passwords with k-Anonymity

Today, v2 of Pwned Passwords was released as part of the Have I Been Pwned service offered by Troy Hunt. Containing over half a billion real world leaked passwords, this database provides a vital tool for correcting the course of how the industry combats modern threats against password security....

By

Junade Ali

Passwords , Best Practices , Security , Salt

February 21, 2018 7:00PM

How Developers got Password Security so Wrong

Both in our real lives, and online, there are times where we need to authenticate ourselves - where we need to confirm we are who we say we are. This can be done using three things....

By

Junade Ali

Passwords , Best Practices , Security , Developers , Salt

February 02, 2017 12:15PM

NANOG - the art of running a network and discussing common operational issues

The North American Network Operators Group (NANOG) is the loci of modern Internet innovation and the day-to-day cumulative network-operational knowledge of thousands and thousands of network engineers....

By

Martin J Levy

BGP , Peering , Best Practices , Events , Salt

December 14, 2016 2:25PM

Manage Cloudflare records with Salt

We use Salt to manage our ever growing global fleet of machines. Salt is great for managing configurations and being the source of truth. We use it for remote command execution and for network automation tasks....

By

Ivan Babrou

GitHub , API , DNS , Reliability , Salt