This has been a rough week in the security industry with big attacks and compromises reported at companies from Facebook to Apple. We’re therefore happy to end the week with some good news: the web’s open resolvers, one of the sources of the biggest DDoS attacks, are getting closed. Sad State of Affairs Last October, […]
Archive | Security
RSS feed for this sectionFacebook Bug Redirects the Web Through Javascript Widget Error
You may have heard that Facebook took down a significant portion of the Internet today. A bug in their Facebook Connect script — which is installed widely across many sites including CNN, MSNBC.com, New York Magazine, and many more places — caused users to be redirected to a Facebook error page. Here’s a video of […]
CloudFlare Heading to Parallels Summit 2013
CloudFlare is heading to Parallels Summit in Las Vegas on Monday, February 4th to Wednesday, February 6th. We look forward to meeting and reconnecting with service providers and providing complimentary limo rides between the airport and the Caesars Palace hotel. We recently launched a partnership with Parallels. Any Parallels service provider can increase revenue, while […]
App: Clearspike automates search engine optimization
You care about your website, and you want it to be found. For many visitors, finding your website starts with search engines. Together, Google, Bing, Baidu and others are huge sources of traffic for every website. The extra speed and security CloudFlare delivers are helpful for search engine ranking, but there are many other factors, […]
App: GamaSec Web Application Security and Vulnerability Scanning
We enjoy working with companies who share a focus on website security. When GamaSec, an online web vulnerability-assessment service, inquired about ways to integrate, we were excited to make their scanning service available as a CloudFlare app, where any CloudFlare customer can easily turn on GamaSec. GamaSec’s cloud-based security scan serves as an early-warning system […]
What We Just Did to Make SSL Even Faster
A little over a month ago, we published a couple of blog posts about how we were making SSL faster. Specifically, we enabled OCSP stapling across our network. In brief, when you visit a page over HTTPS, your browser checks to see if the SSL certificate is still valid via a protocol called OCSP. Those […]
Pushing Nginx to its limit with Lua
At CloudFlare, Nginx is at the core of what we do. It is part of the underlying foundation of our reverse proxy service. In addition to the built-in Nginx functionalities, we use an array of custom C modules that are specific to our infrastructure including load balancing, monitoring, and caching. Recently, we’ve been adding more […]
CloudFlare and Parallels to Bring Website Performance and Security to Millions of SMBs
In early October we quietly announced our partnership with Parallels, a global leader in hosting, cloud services enablement and desktop virtualization. Parallels makes it easier for service providers, like webhosts, to grow their business with service delivery software and a robust partner ecosystem. Today, we are officially launching our partnership with Parallels. If you are […]
Choosing a Two-Factor Authentication System
We’ve been thinking about how to best implement two-factor authentication to better protect our customers’ accounts for quite some time now. When, about 6 months ago, my account was targeted by hackers the importance of a good account security became clear. However, as my hacking case illustrates, two-factor authentication alone is not a complete answer. […]
Two-factor Authentication Now Available
With web performance and security being the core of CloudFlare, we are always looking for ways to improve not just our customers’ website security, but their account security as well. Therefore, we are excited to now offer two-factor authentication for all CloudFlare accounts. With two-factor authentication, our customers’ accounts get an added layer of login […]