Articles about cloudflare

DNS toolkit

DNSSEC in a click: Cloudflare tries to crack uptake inertia

Cloudflare is offering DNSSEC in a single click. The content delivery network (CDN) company has included the option to add the security protocol to your domain name through its dashboard in a single, simple form. The goal, the biz said on Tuesday, is increased adoption. Cloudflare won't be charging for the service, its …
Kieren McCarthy, 18 Sep 2018
This is the blockchain. Yes, THE blockchain

Cloudflare invites folk to dabble in the 'distributed web' with InterPlanetary File System gateway

Cloudflare has decided the four-year-old InterPlanetary File System (IPFS) project looks strong enough to warrant a little love, and has launched a gateway to allow the IPFS-curious to try out the "distributed web" protocol. The hosting outfit said users can use IPFS both to find and host content (noting there are currently …

Be your own YouTube: Cloudflare Stream flies out of beta, emits vids

Does the world need another streaming platform? Cloudflare thinks so, and today it set its Cloudflare Stream beta (running for nearly a year) to general availability. The idea, as CEO Matthew Prince said to The Register, is to take what customers now buy as three products and turn them into one. Outside the safe embrace of …

Cloudflare experiments with hidden Tor services

Cloudflare has added a Tor hidden service to its DNS services. Launching the service, the company explained that while it wipes logs and doesn't write client IP addresses to disk, “exceptionally privacy-conscious folks might not want to reveal their IP address to the resolver at all, and we respect that.” The resolver's …
DDOS

Summoners of web tsunamis have moved to layer 7, says Cloudflare

Attackers have noticed that the world is getting better at fending off massive distributed denial-of-service attacks, and are trying to overwhelm application processes instead. So says DDoS-deflector Cloudflare, which reckons it's seen a spike in cyber-assaults trying to exhaust high-level server resources, such as per-process …
Résumé

Former Facebook and Uber CSO hired by Cloudflare

When John Sullivan worked at Facebook, Aleksandr Kogan created the infamous personality quiz app that, unbeknown to The Social Network™, eventually funnelled data to Cambridge Analytica. And when Sullivan worked for Uber, he was fired for his part in paying off hackers to conceal a breach of 57 million users’ records. And now …
Simon Sharwood, 18 May 2018
Cloudflare Spectrum graphic

Cloudflare promises to tend not two, but 65,535 ports in a storm

Cloudflare made its name proxying traffic for web servers, on network ports 80 (HTTP) and 443 (HTTPS), as a defense against denial of service attacks and their ilk. On Thursday, the online security biz broadened its ambitions by extending its watch over the remaining possible TCP/IP network ports under IPv4. Cloudflare …
Thomas Claburn, 13 Apr 2018
Small meal Shutterstock

Testing, one-one-one-one. Yep, you're ready for net news nuggets

Cloudflare generated some buzz of the wrong kind when it turned out the company's much-hyped privacy-focussed DNS resolver at 1.1.1.1 caused hassles for some users. The problems had a variety of causes, Cloudflare wrote, all of them down to clashes with the address: some routers are configured with 1.1.1.1 as an internal IP …
Illustration of someone's privacy being invaded

Cloudflare touts privacy-friendly 1.1.1.1 public DNS service. Hmm, let's take a closer look at that

Updated Cloudflare has revealed a deal with regional internet registry APNIC to provide a possibly more privacy-conscious DNS resolver at a prestige network address, 1.1.1.1. The biz contends DNS – which translates human-friendly domain names like theregister.com into numeric IP addresses, such as 159.100.131.165, used by software – …

Cloudflare pushes Workers out the door – without layoffs

Cloudflare has launched a service that lets its customers run JavaScript at the edge of its cloud. Built on Google's V8 JavaScript engine, "Cloudflare Workers" is pitched as a kind of halfway house between central cloud processing and local execution: in beta since September 2017, it integrated the company's Service Worker API …
Skull and crossbones cavalry insignia

Cavalry riding to the rescue of DDoS-deluged memcached users

DDoS attacks taking advantage of ill-advised use of memcached have begun to decline, either because sysadmins are securing the process, or because people are using a potentially-troublesome “kill switch”. Memcached is a handy caching tool that can improve database performance but has no security controls because it was never …
Shutterstock Firehose

Popular cache utility exploited for massive reflected DoS attacks

Attackers have discovered a new amplified denial-of-service attack vector, and have launched attacks reaching hundreds of gigabits per second in Asia, North America and Europe. Former Internet Systems Consortium CEO and now Akamai principal architect Barry Raveendran Greene has detailed the reflected DOS attack on his blog and …

Blackbird shot down, patent nuked by judge in Cloudflare legal battle

A US court has trashed a patent at the center of Cloudflare's legal war with patent troll Blackbird Technologies – and thrown out the latter's case against the web biz. In a victory for Cloudflare, Judge Vince Chhabria, sitting in a northern district court of California, ruled on Monday [PDF] that Blackbird's US patent 6,453, …
Shaun Nichols, 13 Feb 2018

FYI: Processor bugs are everywhere – just ask Intel and AMD

In 2015, Microsoft senior engineer Dan Luu forecast a bountiful harvest of chip bugs in the years ahead. "We’ve seen at least two serious bugs in Intel CPUs in the last quarter, and it’s almost certain there are more bugs lurking," he wrote. "There was a time when a CPU family might only have one bug per year, with serious …
Thomas Claburn, 26 Jan 2018
password

Coinhive hacked via old password to move manic miners' Monero into miscreants' pockets

Monero miner maker Coinhive was hacked so that websites using its code inadvertently redirected their generated cryptocurrency to miscreants – after the outfit forgot to change an old password. The team, which develops alt-coin mining JavaScript engines, said on Tuesday hackers had used an old Cloudflare account password to …
Iain Thomson, 24 Oct 2017
Chairman Mao exhorting chinese workers to do their utmost for the nation

JS code at the network edge. Oh, you're still here and not running, screaming? Read on

Bit caching biz Cloudflare on Friday teased website publishers with the prospect of being able to run JavaScript at the edge of its content delivery network, a capability that promises performance, security, and reliability improvements. The outfit puts copies of customers' websites and content at various locations around the …
Thomas Claburn, 30 Sep 2017

Citrix patches Netscaler hole, ARM TrustZone twisted, Android Dirty COW exploited – and more security fails

Roundup As ever, it has been a busy week on the security front with good news, some very bad reports, corporate failings all round and troubling signs ahead for those worried about government intrusion in the online world. Here's El Reg's take on the resulting wreckage. Cloudflare opens up protection Among the good news, Cloudflare …
Team Register, 29 Sep 2017
Money explosion photo via Shutterstock

Cloudflare coughs up a few grand for prior-art torpedoes to sink troll

Cloudflare says its efforts to wipe out a patent troll using prior art have already yielded more than a dozen examples. The DDoS shield said that its ongoing campaign against Blackbird Technologies LLC, a law firm based in Boston, Massachusetts, has cost it a few pennies – $7,500 specifically – to cover bounties on 15 examples …
Shaun Nichols, 21 Sep 2017

Create a news alert about cloudflare, or find more stories about cloudflare.

Biting the hand that feeds IT © 1998–2018