LuaJIT Hacking: Getting next() out of the NYI list
2017-02-21
At Cloudflare we’re heavy users of LuaJIT and in the past have sponsored many improvements to its performance. ...
You can now use Google Authenticator and any TOTP app for Two-Factor Authentication
2017-02-16
Since the very beginning, Cloudflare has offered two-factor authentication with Authy, and starting today we are expanding your options to keep your account safe with Google Authenticator and any Time-based One Time Password (TOTP) app of your choice....
Discovering Great Talent with Path Forward
2017-02-15
In the fall of 2016, I was just beginning my job search. I’d been lucky to lead HR at a number of great cutting-edge technology start-ups, and I was looking for my next adventure....
NCC Group's Cryptography Services audits our Go TLS 1.3 stack
2017-02-15
The Cloudflare TLS 1.3 beta is run by a Go implementation of the protocol based on the Go standard library, crypto/tls. ...
Want to see your DNS analytics? We have a Grafana plugin for that
2017-02-14
Curious where your DNS traffic is coming from, how much DNS traffic is on your domain, and what records people are querying for that don’t exist? We now have a Grafana plugin for you. ...
Cloudflare Crypto Meetup #5: February 28, 2017
2017-02-07
Come join us on Cloudflare HQ in San Francisco on Tuesday, Febrary 28, 2017 for another cryptography meetup. We again had a great time at the last one, we decided to host another. It's becoming a pattern....
DDoS Ransom: An Offer You Can Refuse
2017-02-06
Cloudflare has covered DDoS ransom groups several times in the past. First, we reported on the copycat group claiming to be the Armada Collective and then not too long afterwards, we covered the "new" Lizard Squad....
NANOG - the art of running a network and discussing common operational issues
2017-02-02
The North American Network Operators Group (NANOG) is the loci of modern Internet innovation and the day-to-day cumulative network-operational knowledge of thousands and thousands of network engineers....
Protecting everyone from WordPress Content Injection
2017-02-01
Today a severe vulnerability was announced by the WordPress Security Team that allows unauthenticated users to change content on a site using unpatched (below version 4.7.2) WordPress....
TLS 1.3 explained by the Cloudflare Crypto Team at 33c3
2017-02-01
Nick Sullivan and I gave a talk about TLS 1.3 at 33c3, the latest Chaos Communication Congress. The congress, attended by more that 13,000 hackers in Hamburg, has been one of the hallmark events of the security community for more than 30 years....
Firebolt: the fastest, safest ads on the web
2017-01-30
Cloudflare’s mission is to help build a better Internet. That means a faster, more secure, open Internet world-wide. We have millions of customers using our services like free SSL, an advanced WAF....
Introducing Accelerated Mobile Links: Making the Mobile Web App-Quick
2017-01-12
We've predicted that more than half of the traffic to Cloudflare's network will come from mobile devices. Even if they are formatted to be displayed on a small screen, the mobile web is built on traditional web protocols and technologies that were designed for desktop....
Cloudflare’s Transparency Report for Second Half 2016 and an Additional Disclosure for 2013
2017-01-10
Cloudflare is publishing today its seventh transparency report, covering the second half of 2016. For the first time, we are able to present information on a previously undisclosed National Security Letter (NSL) Cloudflare received in the 2013 reporting period. ...
Token Authentication for Cached Private Content and APIs
2017-01-10
While working to make the Internet a better place, we also want to make it easier for our customers to have control of their content and APIs, and who has access to them. Using Cloudflare’s Token Authentication features, customers can implement access control via URL tokens or HTTP request headers....
The Porcupine Attack: investigating millions of junk requests
2017-01-09
We extensively monitor our network and use multiple systems that give us visibility including external monitoring and internal alerts when things go wrong....
How and why the leap second affected Cloudflare DNS
2017-01-01
At midnight UTC on New Year’s Day, deep inside Cloudflare’s custom RRDNS software, a number went negative when it should always have been, at worst, zero. A little later this negative value caused RRDNS to panic. ...
Panama expands Cloudflare network to 50 countries
2016-12-30
A man, a plan, a canal, a data center. Over 5 million Internet properties are now faster across Panama, as Cloudflare turned up its newest data center in Panama City....
2017 and the Internet: our predictions
2016-12-30
Looking back over 2016, we saw the good and bad that comes with widespread use and abuse of the Internet. ...
Using Guzzle and PHPUnit for REST API Testing
2016-12-28
APIs are increasingly becoming the backbone of the modern internet - whether you're ordering food from an app on your phone or browsing a blog using a modern JavaScript framework, chances are those requests are flowing through an API. ...
So you want to expose Go on the Internet
2016-12-26
Back when crypto/tls was slow and net/http young, the general wisdom was to always put Go servers behind a reverse proxy like NGINX. That's not necessary anymore!...