334 entries in 0.464s
davout: pankkake: it's only for the font, nothing remotely comparable to
cloudflare pankkake: so much for not using
cloudflare!
pankkake: I really need a firefox addon to display a red
cloudflare warning…
pankkake: lol, bitpay is using
cloudflare mircea_popescu: Naphex:
cloudflare makes little sense to me << or to anyone whose brain works enough to power a goat.
fluffypony: Naphex:
CloudFlare is AMAZING for non-critical services
fluffypony: "5 days before this article was written
Cloudflare started offering Full (Strict) SSL, where traffic between
Cloudflare and the origin server is encrypted AND the origin server’s cert is validated."
Naphex:
cloudflare makes little sense to me
ozbot: The
CloudFlare MITM | Paymium
davout: Naphex: not that having the password transit in clear was really necessary to get pwned by the
cloudflare heresy anyway
Naphex: my fav part is how blockchain api carries password through
cloudflare ssl passthru
mircea_popescu: someone "bought" "traffic", got ddosed, got
cloudflare.
mircea_popescu: check that shit out. it redirects to a ...
cloudflare protected domain
Naphex:
cloudflare just setup varnish
fluffypony: yeah except
CloudFlare doesn't support anything like that
mike_c: all of which breaks when
cloudflare tweaks their page
mike_c: yeah.. i've seen PITA ways with scraping the
cloudflare response, grabbing the JS shit and posting some form or something.
fluffypony: mike_c: I figured out how to scrape through
CloudFlare, if you need me to make the jd mpif number available for you or explain how to walk past
cloudflare mike_c: yes.. and if
cloudflare didn't prevent me from getting it through code. gotta love
cloudflare.
mircea_popescu: dooglus now if only
cloudflare didn't redirect me to root
Naphex: getting ddos'ed and
cloudflare shutting down the API's
fluffypony: mircea_popescu: no need,
CloudFlare has nice little 302 redirect rules, so the URL can stay long
mircea_popescu: TestingUnoDosTre because it is my considered opinion that that's what
cloudflare is.
ozbot: cloudflare_challenge
ozbot: The Results of the
CloudFlare Challenge |
CloudFlare Blog
fluffypony: so
CloudFlare's Heartbleed challenge was broken by two researchers
Shakespeare:
Cloudflare now saying they cant figure out how to get heartbleed to bleed keys
fluffypony: before I patched our local server this morning (not behind
CloudFlare as
CloudFlare don't have a node in South Africa) I played around with it
mike_c: i get
cloudflare errors 75% of the time i try to go to havelock.
mircea_popescu: it's like... between
cloudflare, what's that fucktardec omments thing
mike_c:
cloudflare is breaking the internet one stupid site at a time.
benkay: i was getting
cloudflare.
nubbins`: ^ this is the proper way to deal with this issue, not a fucking
cloudflare snapshot
jurov: no i mean instead fo
cloudflare Evolyn: sometimes the site loads, yes, but having trouble most of time, and
cloudflare shows me offline version all time
mircea_popescu: b) overall, the sum total of network time the
cloudflare "customers" lost owing to
cloudflare being a pos exceeds by degree of magnitude any mitigated "attacks"
mircea_popescu: a) no
cloudflare "customer" was ever protected by
cloudflare of a "400 gpbs" attac
mircea_popescu:
cloudflare has been rehashing this story about every 3 months.
ozbot: Massive DDoS Attack Leveraged Network Timing Protocol:
CloudFlare chipug: my client freaked out. someone swore and mentioned
cloudflare mircea_popescu: pankkake i wonder if i could get tor through
cloudflare on an amazon server ?
pankkake:
cloudflare is mostly free by the way
mircea_popescu: pankkake the recent netcraft report actually fucking mentions
cloudflare mircea_popescu:
cloudflare is one of the worst things that happened to the internet recently.
simlay: wao-ender: on freenode? I heard about 50 GB/s to
cloudflare davout: i think it has more to do with "oh your DNS is configured to
cloudflare, where do i sign?"
mircea_popescu: davout "
Cloudflare talked a major CA into issuing a certificate for any domain with a
cloudflare-generated keypair;"
davout: apparently someone accidentally enabled
cloudflare for btctalk ending up, as usual, in drama and lulz
davout:
CloudFlare, getting MITM'd the hipster way
davout: trolltalk seems to be available, except the DNS records point to
cloudflare instead of pointing to the servers IP
davout: so apparently someone accidentally enabled
cloudflare for btctalk
KRS|gotyawallet: i have a friend that does that for a living..he told me some good stories..
cloudflare is their biggest competitor
jurov`: truffles: you have to surrender ssl cert to
cloudflare so that it works effectively
Apocalyptic: just thermos decided to switch to
cloudflare and the new DNS entries don't redirect correctly
ozbot: DNS points to prohibited IP | www.playdeb.net |
CloudFlare mircea_popescu: if incapsula/
cloudflare/etc were any good mpex'd use them.
ThickAsThieves: btct is also using
cloudflare, those two long addresses
mircea_popescu: pankkake yeah,
cloudflare is not a good model for btc exchanges.
pankkake: well there's the problems, and there's the
CloudFlare: Totally not run by the NSA, we promise!
pankkake: people should not be using
cloudflare at all
dexX7: havelook has
cloudflare issues for at least 2 days
Namworld: "This page (
https://btct.co/) is currently offline. However, because the site uses
CloudFlare's Always Online™ technology you can continue to surf a snapshot of the site. We will keep checking in the background and, as soon as the site comes back, you will automatically be served the live version."
Scrat: their website still on
cloudflare Scrat: xhr-polling certainly works over
cloudflare topace: i gotta figure out how to run a websocket through
cloudflare now
Scrat: topace: if you're on
cloudflare I'm curious as to what happened
jcpham:
cloudflare may have made it better
topace: we've used
cloudflare for a few months now
topace: can you provide traceroutes/ping logs?
cloudflare should speed things up greatly
kakobrekla: >Yes am holding at godads instant until I have time to link up my dreamweaver and more importantly
cloudflare.
dub: we just logged an inbound DDoS from
cloudflare fiat500: whole point of using
cloudflare is to hide your server, if you keep the default "direct" CNAME you are a total moron
[\]:
cloudflare does nothing for them
[\]: they're using
cloudflare