Collaborate Disseminate
According to my CloudFlare firewall logs, somebody went through each of my subdomains. My website is not advertised, it doesn’t even show on Google unless typing the exact domain name into it. I think I know where they found it listed, tho… Continue reading Seems my CNAMEs got "curled". Somebody please explain this to me
I would like to understand Cloudflare full(strict) SSL flow.
Because if user type https://example.com it redirects to Cloudflare web servers. So how Cloudflare decrypt HTTPS data before sending to origin host without browser warning ?
How… Continue reading Cloudflare Full Strict HTTPS flow
If I understand correctly, they can see all the requests that are coming in to your server. So, all POST requests (user credentials, comments user posts, and many more) can be seen by Cloudflare (responses are protected if your site just a… Continue reading Is using Cloudflare, and other services that proxy your site, a security hazard?
Goal
My goal is to build a PWA. I am new to programming and I believe it is better to start with NGINX.
I have not found a good article (explaining the security risk) about using the Cloud DNS (such as Alibaba Cloud DNS) to function as a… Continue reading How do you mitigate the risk of stolen unencrypted data because you are using Cloud DNS to proxy the request that are sent to your server?
Cloudflare’s CEO said it is replacing Google’s reCAPTCHA tool with hCaptcha due to pricing, privacy and availability concerns. Continue reading Cloudflare Axes Google reCAPTCHA Due to Privacy, Price
A group of CDNs and cloud providers are joining in on a fight against common internet routing attacks. Continue reading Cloud Providers, CDNs Team Up to Battle Internet Routing Attacks
Cloudflare, the security, performance, and reliability company helping to build a better Internet, announced that it has expanded the Bandwidth Alliance by partnering with Alibaba Cloud, the data intelligence backbone of Alibaba Group. The Bandwidth Al… Continue reading Cloudflare expands the Bandwidth Alliance by partnering with Alibaba Cloud
When I access https://example.com on my company’s laptop that has a X509 client certificate installed, using my home internet connection, without using a VPN, the requested page is signed using the company’s Root CA (which was distributed … Continue reading How does Cloudflare negotiate its server certificate?
Security researchers spotted BlackWater malware leveraging a Cloudflare Worker for command-and-control (C&C) functionality. MalwareHunterTeam observed that the threat activity began with an RAR file called “Important – COVID-19.rar.R… Continue reading Cloudflare Worker Employed as C&C Server by BlackWater Malware
If you use the Firefox web browser, here’s an important update that you need to be aware of.
Starting today, Mozilla is activating the DNS-over-HTTPS security feature by default for all Firefox users in the U.S. by automatically changing their DNS ser… Continue reading Firefox enables DNS-over-HTTPS by default (with Cloudflare) for all U.S. users