When the Bad Guys Name Malware After You, You Know You're Doing Something Right
CloudFlare's I'm Under Attack Mode (IUAM) is elegantly simple. When a site is under an application layer (Layer 7) distributed denial of service (DDoS) attack, the mode will return a challenge page to...
View ArticleGood Web Security News: Open DNS Resolvers Are Getting Closed
This has been a rough week in the security industry with big attacks and compromises reported at companies from Facebook to Apple. We're therefore happy to end the week with some good news: the web's...
View ArticleCloudFlare's Railgun: Easier Than Ever
Over the next few days we have a number of announcements regarding CloudFlare's Railgun technology. We wanted to begin, however, with what is in some ways the end: the ways in which you can take...
View ArticleHow to Tell How Well Railgun Is Working for Your Site
Yesterday, we announced that 30 of the world's largest hosting providers are now supporting CloudFlare's Railgun WAN optimization technology. Railgun uses delta compression to only transmit the parts...
View ArticleCloudFlare London: We're hiring
When we talk about international expansion we're usually talking about adding data centers around the world. The last one we added was in Seoul, South Korea. And we've had a data center in London for a...
View ArticleToday's Outage Post Mortem
This morning at 09:47 UTC CloudFlare effectively dropped off the Internet. The outage affected all of CloudFlare's services including DNS and any services that rely on our web proxy. During the outage,...
View ArticleLoad Balancing without Load Balancers
CloudFlare had an hour-long outage this last weekend. Thankfully, outages like this have been a relatively rare occurance for our service. This is in spite of hundreds of thousands of customers, the...
View ArticleGo London User Group
We've mentioned before that we're using Go internally for projects such as Railgun (and a new DNS server and SSL infrastructure amongst other things). And we've mentioned that we are opening an office...
View ArticleCloudFlare Keeps TheBayLights.org Running Bright
The ArtWhen you think of San Francisco, undoubtedly one bridge in particular comes to mind - The Golden Gate Bridge. This year, however, the Bay Bridge is getting its moment in the spotlight thanks to...
View ArticleThe DDoS That Knocked Spamhaus Offline (And How We Mitigated It)
At CloudFlare, we deal with large DDoS attacks every day. Usually, these attacks are directed at large companies or organizations that are reluctant to talk about their details. It's fun, therefore,...
View ArticleLeading Experts Weigh in on Industry Trends at Parallels Summit 2013
Last month we attended Parallels Summit to meet with new and existing partners, and hear from leading experts on the latest industry trends. We had a great time giving limo rides to summit attendees...
View ArticlePage Rules Reordering Now Available
Page Rules are powerful tools for controlling how CloudFlare works on your site on a page-by-page basis. Customers customize CloudFlare with Page Rules based on their specific needs, including changing...
View ArticleThe DDoS That Almost Broke the Internet
The New York Times this morning published a story about the Spamhaus DDoS attack and how CloudFlare helped mitigate it and keep the site online. The Times calls the attack the largest known DDoS attack...
View ArticleHow the CloudFlare Team Got Into Bondage (It's Not What You Think)
(Image courtesy of ferelswirl)At CloudFlare, we're always looking for ways to eliminate bottlenecks. We're only able to deal with the very large amount of traffic that we handle, especially during...
View ArticleContinuing the Conversations from Parallels Summit 2013
As we wrote about before, we attended Parallels Summit in February where we hosted "Conversations with CloudFlare" - live video interviews with industry experts.Below are highlights and video clips...
View ArticlePatching the Internet in Realtime: Fixing the Current WordPress Brute Force...
There is currently a significant attack being launched at a large number of WordPress blogs across the Internet. The attacker is brute force attacking the WordPress administrative portals, using the...
View ArticleWhat CloudFlare Logs
Over the last few weeks, we've had a number of requests for information about what data CloudFlare logs when someone visits a site on our network. While we have provided a Privacy Policy that outlines...
View ArticleW3TC and WP Super Cache Vulnerability Discovered, We've Automatically Patched
The team at the research firm Sucuri announced a serious vulnerability to W3TC and WP Super Cache this afternoon. (Update: it appears the vulnerability was first reported on WordPress.org about a month...
View ArticleCribs: CloudFlare London Edition
It's official, CloudFlare has arrived in London.CloudFlare's first international office opened this month near St. Paul's Cathedral in London. We decided to open an office outside Silicon Valley for...
View ArticleHow Syria Turned Off the Internet (Again)
Today at 18:48 UTC, Syria dropped off the Internet. Based on the data we collect from our network, as well as reports from other organizations monitoring network routes, it appears that someone...
View Article