one day you unwrap() what you shouldn't have, another day you again unwrap what you shouldn't have. What should I do with you bigtech? #cloudflare #whatsapp #bigtech
Thank you Cloudflare for the occasional reminder that "the cloud" is just somebody else's computer that you can't go and fix when it inevitably falls over.
hypercentralizers are not having a good day today -- #github has joined #cloudflare to block or slow down millions of folks from doing stuff.
Maybe a good time to checkout out this new ACLU article about the current Apple/Google app-store oligopoly aclu.org/news/free-speech/app-…
TL;dr Google/Apple increasingly wield their world-wide #appcontrol in the political interests of various governments, and not in the interest of user security or privacy. The article lays out three areas of fighting back ...
So rblind.com didn't go down, and it isn't anymore broken today than it usually is. Cloudflare breaks #accessibility. It always has, and it always will. Now the rest of you know how it feels to be locked out because you don't run JavaScript and can't solve a captcha. Will you stop using #cloudflare? No, of course not! If it blocks #AI, you're completely fine with denying that blind users might be human at all. As AI becomes more and more capable, the definition of "human" is going to become more and more restrictive, until everyone who isn't completely able bodied and doesn't have absolutely perfect vision, hearing, and cognition is completely excluded.
I had a cheeky comment prepared for today, saying that you shouldn't rely on Cloudflare if you can afford it, and that you don't truly self-host when you use it, but I could not post it because one of the services I don't self-host —my Mastodon instance— depends on #Cloudflare, too. 😅
Cloudflare seems to be having some kind of oopsie (it's probably DNS. It's always DNS) right now.
When you click on the link on their error page, it takes you to a page that says “Do you have a website? Anybody that runs a website should be on the Cloudflare network.”
Uh, read the room, #cloudflare. When people are trying to find out why your product has shit the bed, that's not really the time to make with the marketing copy about how they really really should be using it.
While #cloudflare US-east1 is busy fixing a good part of the Internet, parts of Matrix/Element, X etc down, good old decentralized #chatmail continues unimpeded and without degradation :)
In other news, there is a new #freebsd community maintained ❤️ #deltachat desktop install:
Cloudflare has announced that it will now block AI web crawlers by default for new customers. It’s also introducing a new “Pay Per Crawl” fee that will let some publishers make AI companies pay to scrape their content.
I thought it would be great to have #PiHole, but accessible from anywhere. And then I came across #AdGuard Home and deployed on my public server. It's open source, all the data stays on the server, it just downloads the filter updates. It has a nice dashboard and from our network it's as fast as #Cloudflare or Google #DNS.
it is absolutely ridiculous to be doing this instead of offloading to reputable community-run servers. matrix.org is *not* a good onboarding experience; in fact it is very slow as evidenced in last week's presentation of Aurora, is the source of a huge amount of abuse even proportional to its active users, and is terrible for privacy/security/anonymity given it sits behind #Cloudflare/#NSA's MITM and requires a google captcha to sign up (along with email)
Nearly half of observed login attempts across websites protected by Cloudflare involved leaked credentials. The pervasive issue of password reuse is enabling automated bot attacks and account takeovers on a massive scale.
Many users prefer to use an RSS feed reader to stay up to date with the content on the websites they visit. But if you've enabled Cloudflare on your website, you're likely blocking these RSS users from accessing your website content without realizing it. openrss.org/blog/using-cloudfl… #RSS #CloudFlare #WebDev
A number of similar projects exist, but none that could set up multiple pipelines/gateways. Hopefully this is useful to someone; blog-post covering the setup here, including deployment on the Google Cloud Run free tier, is coming soon!
cURL + Cloudflare = Information leak - But why?
To be honest, I really don't know. But I'm pretty sure, it will be figured out.
I created a few unique URLs for my specific friends only.
Malicious PyPI Packages Using Cloudflare Tunnels to Sneak Through Firewalls
In yet another campaign targeting the Python Package Index (PyPI) repository, six malicious packages have been found deploying information stealers on developer systems.
@Bubu I don’t think that’s true. I heard a talk pimping #Matrix at #FOSDEM years back, and I remember because I was a bit repulsed that a pro- #Cloudflare org was getting talking time there. It was the same year that #DuckDuckGo abused a time slot to advertise their #Microsoft-driven service.
