diff options
| author | themusicgod1 <themusicgod1@noreply.codeberg.org> | 2020-05-19 11:16:04 +0200 |
|---|---|---|
| committer | themusicgod1 <themusicgod1@noreply.codeberg.org> | 2020-05-19 11:16:04 +0200 |
| commit | 9f6dff88bda0151fdc71f7c06f6275946e8e78a9 (patch) | |
| tree | ea3ad62d5669ecde29fc31320868ee2bba832b28 | |
| parent | 86d35b6fc5b2cb509354d21dce2a83436eaf3a77 (diff) | |
| parent | c3f903f2f12d9da2f9479e6c0f2a89c16a89d956 (diff) | |
| download | cloudflare-tor-9f6dff88bda0151fdc71f7c06f6275946e8e78a9.tar.lz cloudflare-tor-9f6dff88bda0151fdc71f7c06f6275946e8e78a9.tar.xz cloudflare-tor-9f6dff88bda0151fdc71f7c06f6275946e8e78a9.zip | |
Merge pull request 'Import changes from trac.torproject.org' (#4) from J0NA8_Fz/cloudflare-tor:master into master
| -rw-r--r-- | PEOPLE.md | 62 | ||||
| -rw-r--r-- | README.md | 157 | ||||
| -rw-r--r-- | subfiles/about.bcma.md | 2 | ||||
| -rw-r--r-- | subfiles/about.ismm.md | 2 | ||||
| -rw-r--r-- | tool/ansero_example.html | 8 | ||||
| -rw-r--r-- | tool/irssi_cf_alturl.pl | 14 | ||||
| -rw-r--r-- | what-to-do.md | 85 |
7 files changed, 174 insertions, 156 deletions
@@ -1,7 +1,7 @@ # "Cloudflare, we have a problem" - - + + ``` It's pretty sad when even the hometown paper is behind the greatcloudwall. @@ -17,7 +17,7 @@ Man-in-the-middle attack is a serious offense. If you′re using Cloudflare on your website, you won′t get first rank. You shouldn′t use it if you value visitor′s privacy. ``` - -- [Searxes](https://searxes.eu.org/) + -- [Searxes](https://ss.wodferndripvpe6ib4uz4rtngrnzichnirgn7t5x64gxcyroopbhsuqd.onion/) ``` @@ -39,7 +39,7 @@ In addition, with so many websites behind Cloudflare, when it goes down, half th The internet was designed to be decentralised and Cloudflare is centralising it. Half of the internet relying on a single entity is dangerous. ``` --- [Amolith, Ex contributor](https://masto.nixnet.xyz/@Amolith) +-- [Amolith, Ex contributor](https://social.nixnet.services/@Amolith) ``` @@ -55,8 +55,8 @@ Awesome! Use Cloudflare! --- - - + + --- @@ -116,6 +116,8 @@ Awesome! Use Cloudflare! (Just don't add Medium.com articles. It's Cloudflared. Whether the content is good or not doesn't matter.) +"[Mozilla - Devil Incarnate: DNS over HTTPS](http://digdeep4orxw6psc33yxa2dgmuycj74zi6334xhxjlgppw6odvkzkiad.onion/ghost/mozilla.html#cloudflare)" by [DigDeeper](http://digdeep4orxw6psc33yxa2dgmuycj74zi6334xhxjlgppw6odvkzkiad.onion/) + "[Cloudflare silently deleted my DNS records](https://web.archive.org/save/https://txti.es/cloudflare-deleted-my-dns)" by Cloudflare user "[Cloudflare is turning off the internet for me](https://blog.dijit.sh/cloudflare-is-turning-off-the-internet-for-me)" by [Jan Harasym](https://blog.dijit.sh/) @@ -205,6 +207,10 @@ Awesome! Use Cloudflare! </summary> +"[US Bank website is not in Cloudflare DNS](https://www.reddit.com/r/CloudFlare/comments/gmfm4i/us_bank_website_is_not_in_cloudflare_dns/)" + +"[Why does everyone here dislike CloudFlare?](https://www.reddit.com/r/privacy/comments/cce2ui/why_does_everyone_here_dislike_cloudflare/)" + "[As long as Gab uses Cloudflare, it's doomed to failure](https://www.reddit.com/r/gab/comments/eet4cr/as_long_as_gab_uses_cloudflare_its_doomed_to/)" "[Mozilla just lost all its credibility. Cloudflare isn't trustworthy, since it decrypts TLS!](https://www.reddit.com/r/privacytoolsIO/comments/e97thq/mozilla_just_lost_all_its_credibility_cloudflare/)" by [vargasgetulio](https://www.reddit.com/user/vargasgetulio) @@ -2891,40 +2897,40 @@ Jede Seite, die mich dazu drängt, ein #Google #Captcha zu lösen, damit ich mir Screenshot provided by [@NoGoolag](https://t.me/NoGoolag), [@privacytoday](https://t.me/privacytoday), etc - - + + - - + + - - + + - - + + - - + + - - + + - - + + - - + + - - + + - + - - + + </details> --- -
\ No newline at end of file +
\ No newline at end of file @@ -1,7 +1,7 @@ # The Great Cloudwall - - + + --- @@ -16,9 +16,9 @@ The origin webserver administrator allowed the agent to decide [who can access]( --- - - - + + + --- @@ -26,38 +26,38 @@ Take a look at the first image posted below. You will think Cloudflare block _on --- - - - - + + + + --- -It is called this in reference to the [Great Firewall of China](https://www.comparitech.com/privacy-security-tools/blockedinchina/) which does a comparable job of [filtering out many humans](PEOPLE.md) from seeing web content (ie everyone in mainland China and people outside) while at the same time those not affected to see a dratically different web, a web free of censorship such as an image of ["tank man"](https://en.wikipedia.org/wiki/Tank_Man) and the history of ["Tiananmen Square protests"](https://en.wikipedia.org/wiki/1989_Tiananmen_Square_protests#Censorship_in_China). +It is called this in reference to the [Great Firewall of China](https://www.comparitech.com/privacy-security-tools/blockedinchina/) which does a comparable job of [filtering out many humans](PEOPLE.md) from seeing web content (ie everyone in mainland China and people outside) while at the same time those not affected to see a dratically different web, a web free of censorship such as an image of ["tank man"](https://en.wikipedia.org/wiki/Tank_Man) and the history of ["Tiananmen Square protests"](https://en.wikipedia.org/wiki/1989_Tiananmen_Square_protests#Censorship_in_China). Cloudflare possesses [great power](http://digdeep4orxw6psc33yxa2dgmuycj74zi6334xhxjlgppw6odvkzkiad.onion/ghost/mozilla.html). In a sense, they control what the end user ultimately sees. Cloudflare also [automatically](https://twitter.com/itsybitsydots/status/1212691131508477952) [block](PEOPLE.md) legit robots/crawlers such as Google, Yandex, Yacy, and API clients. --- - - - - - - + + + + + + --- -Cloudflare similarly prevents many people who have poor internet connectivity from accessing the websites behind it (for example, they could be behind 7+ layers of NAT or sharing same IP) unless they solve multiple image CAPTCHAs. In some cases, [this will take 10 to 30 minutes to satisfy Google](https://trac.torproject.org/projects/tor/ticket/23840). Many humans are being blocked by Cloudflare [every day](PEOPLE.md). There is no way to solve the captcha without enabling Javascript and Cookies. Cloudflare is [using them](PEOPLE.md) to make a browser signature. +Cloudflare similarly prevents many people who have poor internet connectivity from accessing the websites behind it (for example, they could be behind 7+ layers of NAT or sharing same IP) unless they solve multiple image CAPTCHAs. In some cases, [this will take 10 to 30 minutes to satisfy Google](https://trac.torproject.org/projects/tor/ticket/23840). Many humans and software are being blocked by Cloudflare [every day](PEOPLE.md). There is no way to solve the captcha without enabling Javascript and Cookies. Cloudflare is [using them](PEOPLE.md) to make a browser signature to [identify](https://cryptome.org/2016/07/cloudflare-de-anons-tor.htm) [you](PEOPLE.md). --- - - - - - - + + + + + + --- @@ -68,21 +68,21 @@ Tor _was_ developed by US Army, but current Tor is developed by the [Tor project --- - - - - + + + + --- -And their DNS service, [1.1.1.1](https://1.1.1.1/), is also filtering out users from visiting the website by returning [fake](https://trac.torproject.org/projects/tor/ticket/32915) IP address owned by Cloudflare, localhost IP such as "127.0.0.x", or just return nothing. Cloudflare DNS also [break](https://twitter.com/bowranger/status/1213031783576428550) [online](https://twitter.com/jb510/status/1212521533907668992) [software](https://twitter.com/No_Style/status/1201525422795710466) [from](https://twitter.com/daemuth/status/1187758306535903233) [smartphone](https://twitter.com/gregortorrence/status/1183102089439805441) [app to computer game because of their fake DNS answer](PEOPLE.md). +And their DNS service, [1.1.1.1](https://1.1.1.1/), is also filtering out users from visiting the website by returning [fake](https://trac.torproject.org/projects/tor/ticket/32915) IP address owned by Cloudflare, localhost IP such as "127.0.0.x", or just return nothing. Cloudflare DNS also [break](https://twitter.com/bowranger/status/1213031783576428550) [online](https://twitter.com/jb510/status/1212521533907668992) [software](https://twitter.com/No_Style/status/1201525422795710466) [from](https://twitter.com/daemuth/status/1187758306535903233) [smartphone](https://twitter.com/gregortorrence/status/1183102089439805441) [app](https://www.reddit.com/r/CloudFlare/comments/gmfm4i/us_bank_website_is_not_in_cloudflare_dns/) [to computer game because of their fake DNS answer](PEOPLE.md). --- - - - - + + + + --- @@ -93,18 +93,18 @@ It is impossible to [analyze](https://blog.cloudflare.com/the-csam-scanning-tool --- - - - - - + + + + + --- Do you really want to share your data with Cloudflare, and also 3-letter agency? Internet user's online profile is a "product" that the government and big tech companies wants to buy. -US [Department of Homeland Security](https://www.dhs.gov/) said: +U.S. [Department of Homeland Security](https://www.dhs.gov/) said: ``` Do you have any idea how valuable the data you have is? Is there any way you would sell us that data? @@ -112,9 +112,9 @@ Is there any way you would sell us that data? --- - - - + + + --- @@ -124,8 +124,8 @@ Cloudflare said their VPN service make your internet [fast](https://www.wired.co --- - - + + --- @@ -133,22 +133,22 @@ You might already know about the [PRISM](https://en.wikipedia.org/wiki/PRISM_(su --- - - + + --- ### Cloudflare is a honeypot. - + ### Free honey for everyone. _Some_ strings attached. - + ### Do not use Cloudflare. - + ### Decentralize the internet. @@ -157,7 +157,7 @@ You might already know about the [PRISM](https://en.wikipedia.org/wiki/PRISM_(su --- -## continue to next page: [Cloudflare Ethics](README_ethics.md) +## please continue to next page: [Cloudflare Ethics](README_ethics.md). @@ -176,27 +176,33 @@ This repository is **a list** of websites that are **behind "_The Great Cloudwal **Data** * [Cloudflare Inc.](cloudflare_inc/) * [Cloudflare Users](cloudflare_users/) -* [Cloudflare Domains](cloudflare_users/domains/) -* [Non-Cloudflare CDN users](not_cloudflare/) -* [Anti-Tor users](anti-tor_users/) - +* [Cloudflare Domains](https://gitea.com/you/cloudflare) `delay sync` +* [Non-Cloudflare CDN users](https://gitea.com/you/cdn) `delay sync` +* [Anti-Tor users](https://gitea.com/you/antitor) `delay sync` + + + **More Information** * [Short version of README](README_short.md) `DRAFT` * [Myth Catalog](myth_catalog.md) `DRAFT` -* [The Great Cloudwall](article.txt) by Mr. Jeff Cliff; PDF version [here](pdf/2019-The_Great_Cloudwall.pdf), [ePUB here](pdf/2019-Jeff_Cliff_The_Great_Cloudwall.epub) `DRAFT` +* [The Great Cloudwall](article.txt) by Mr. Jeff Cliff + * other version: PDF [here](pdf/2019-The_Great_Cloudwall.pdf), ePUB [here](pdf/2019-Jeff_Cliff_The_Great_Cloudwall.epub) * [Padlock icon indicates a secure SSL connection established w MITM-ed](https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=831835) by Anonymous * [Block Global Active Adversary Cloudflare](https://trac.torproject.org/projects/tor/ticket/24351) by nym-zone + * Deleted by the [Tor Project](https://lists.torproject.org/pipermail/anti-censorship-team/2020-May/000098.html). See [34175](https://trac.torproject.org/projects/tor/ticket/34175). + * Last [archive 24351](https://web.archive.org/web/*/https://trac.torproject.org/projects/tor/ticket/24351) * [Problem with Cloudflare](https://github.com/privacytoolsIO/privacytools.io/issues/374#issuecomment-460077544) by libBletchley + * They had used Cloudflare in the past. [Added](https://github.com/privacytools/privacytools.io/pull/1205) CF-tor but [removed it](https://github.com/privacytools/privacytools.io/pull/1804). * [Criticism and controversies](https://en.wikipedia.org/wiki/Cloudflare#Criticism_and_controversies) by Wikipedia -* [Cloudflare Watch](http://www.crimeflare.org:82/) (cons: _down quite a lot, old data, search restricted to EU only_) +* [Cloudflare Watch](http://www.crimeflare.org:82/) * [Another landmark day in the war to control, centralize and censor the internet.](https://www.reddit.com/r/privacy/comments/b8dptl/another_landmark_day_in_the_war_to_control/) by TheGoldenGoose8888 * [Disadvantage of relying on only one service](https://twitter.com/w3Nicolas/status/1134529316904153089) ([DO is CF](https://www.digwebinterface.com/?hostnames=ns1.digitalocean.com%0D%0Ans2.digitalocean.com%0D%0Ans3.digitalocean.com%0D%0Awww.digitalocean.com&type=A&ns=resolver&useresolver=8.8.4.4&nameservers=)) -* [HashTag #FuckCloudflare on Mastodon Network](https://mastodon.social/tags/fuckcloudflare) +* [HashTag #FuckCloudflare on Mastodon Network](https://mastodon.mit.edu/tags/fuckcloudflare) - + </details> @@ -212,7 +218,7 @@ This repository is **a list** of websites that are **behind "_The Great Cloudwal * Read [other user's voice](PEOPLE.md) and write your thoughts. -* Search something on [Ansero](http://ansero.xgwglrypkjbgecns2zru5ekyu7tnqgg7l5blojlq7roohxbwkr5k77id.onion/)<sub><sup> [ᶜˡᵉᵃʳⁿᵉᵗ](https://ansero.eu.org/)</sup></sub> or [Searxes](http://searxes.nmqnkngye4ct7bgss4bmv5ca3wpa55yugvxen5kz2bbq67lwy6ps54yd.onion/)<sub><sup> [ᶜˡᵉᵃʳⁿᵉᵗ](https://searxes.eu.org/)</sup></sub>. +* Search something on [Ansero](https://ansero.wodferndripvpe6ib4uz4rtngrnzichnirgn7t5x64gxcyroopbhsuqd.onion/)<sub><sup> [ᶜˡᵉᵃʳⁿᵉᵗ](https://ansero.eu.org/)</sup></sub> or [Searxes](https://ss.wodferndripvpe6ib4uz4rtngrnzichnirgn7t5x64gxcyroopbhsuqd.onion/)<sub><sup> [ᶜˡᵉᵃʳⁿᵉᵗ](https://searxes.eu.org/)</sup></sub>. * Update the domain list: [List instructions](instructions.md). @@ -224,41 +230,28 @@ This repository is **a list** of websites that are **behind "_The Great Cloudwal --- -### "Stop Cloudflare" Official Accounts - -**NEVER** trust other accounts. - -* [Mastodon (crimeflare)](https://activism.openworlds.info/@crimeflare) - -* [Twitter (stop_cloudflare)](https://twitter.com/stop_cloudflare) ([We don't like Twitter](https://robinwils.gitlab.io/articles/why-i-made-a-twitter/#why-twitter)) - - -> We don't read _direct message_. If you want to say something [join here](https://codeberg.org/crimeflare/cloudflare-tor/issues). - ---- -  - - - - + + + + </details> --- - + - + - + - + - + - + -
\ No newline at end of file +
\ No newline at end of file diff --git a/subfiles/about.bcma.md b/subfiles/about.bcma.md index 19453b09..eabd3e72 100644 --- a/subfiles/about.bcma.md +++ b/subfiles/about.bcma.md @@ -17,4 +17,4 @@ Your cloudflare-domain collection is yours. Download add-on -- [Firefox ESR / Chromium](https://api.searxes.eu.org/_/addon.php?give&for=bcma)
\ No newline at end of file +- [Firefox ESR / Chromium](https://api.wodferndripvpe6ib4uz4rtngrnzichnirgn7t5x64gxcyroopbhsuqd.onion/_/addon.php?give&for=bcma)
\ No newline at end of file diff --git a/subfiles/about.ismm.md b/subfiles/about.ismm.md index 1b9c7f65..35b5a914 100644 --- a/subfiles/about.ismm.md +++ b/subfiles/about.ismm.md @@ -21,4 +21,4 @@ This add-on never send other information. Download add-on -- [Firefox ESR / Chromium](https://api.searxes.eu.org/_/addon.php?give&for=ismitmlink)
\ No newline at end of file +- [Firefox ESR / Chromium](https://api.wodferndripvpe6ib4uz4rtngrnzichnirgn7t5x64gxcyroopbhsuqd.onion/_/addon.php?give&for=ismitmlink)
\ No newline at end of file diff --git a/tool/ansero_example.html b/tool/ansero_example.html index 6cdc2fbb..ff578c55 100644 --- a/tool/ansero_example.html +++ b/tool/ansero_example.html @@ -22,8 +22,8 @@ a[onclick] { } </style> <script> -let apiurl = 'https://ansero.eu.org/api/ansero.php'; -let favurl = 'https://ansero.eu.org/api/favicon.php?f='; +let apiurl = 'https://api.wodferndripvpe6ib4uz4rtngrnzichnirgn7t5x64gxcyroopbhsuqd.onion/_/ansero.php'; +let favurl = 'https://api.wodferndripvpe6ib4uz4rtngrnzichnirgn7t5x64gxcyroopbhsuqd.onion/_/favicon.php?f='; let mylang = 'en-US'; let hide_domain = []; // e.g. 'google.com' let hide_fqdn = []; // e.g. 'en.wikipedia.org' @@ -61,10 +61,6 @@ function search() { } r.res.forEach(x => { if (!hide_fqdn.includes(x.fqdn) && !hide_domain.includes(x.dom)) { - if (/^https:\/\/www\.youtube\.com\/watch\?v=(.*)$/.test(x.url)) { - x.url = 'https://invidio.us/watch?' + x.url.split('/watch?')[1]; - x.fqdn = x.dom = 'invidio.us'; - } answer += '<span class="srch_sect">'; answer += '<img src="' + favurl + (x.url.startsWith('https:') ? '1-' : '0-') + x.fqdn + '"> '; answer += '<a href="' + x.url + '" class="srch_link">' + (x.mitm == 1 ? '[MITM!!] ' : '') + x.title + '</a><br>'; diff --git a/tool/irssi_cf_alturl.pl b/tool/irssi_cf_alturl.pl index 07dd8449..24472c85 100644 --- a/tool/irssi_cf_alturl.pl +++ b/tool/irssi_cf_alturl.pl @@ -24,7 +24,7 @@ use vars qw($VERSION %IRSSI); -$VERSION = "20190706"; +$VERSION = "20200501"; %IRSSI = ( # Special thanks to: "eo, tsaavik" @@ -227,10 +227,10 @@ sub GotUrl { deb("$target Asking API about $fqdn"); $answer = ''; $url = - 'https://api.searxes.eu.org/_/ismitm.php?f=' + 'https://api.wodferndripvpe6ib4uz4rtngrnzichnirgn7t5x64gxcyroopbhsuqd.onion/_/ismitm.php?f=' . $fqdn; $browser = LWP::UserAgent->new; - $browser->agent("Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0"); + $browser->agent("Mozilla/5.0 (Windows NT 6.1; rv:78.0) Gecko/20100101 Firefox/78.0"); $response = $browser->get($url); $answer = $response->content; if ( $answer eq '[true,true]' ) { @@ -246,14 +246,14 @@ sub GotUrl { if ( length($myurl) > $cfg_minurllen ) { if ( $cfg_shortonion == 1 ) { deb("$target Creating Short Onion for $myurl"); - $url = 'https://url.danwin1210.me/?i=new&url=' . $myurl; + $url = 'http://hbfkuwcbzhcht33fetbiajuh7i6gqupgnyupxcmujiky34drzmpajrid.onion/?i=new&url=' . $myurl; $browser = LWP::UserAgent->new; - $browser->agent("Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0"); + $browser->agent("Mozilla/5.0 (Windows NT 6.1; rv:78.0) Gecko/20100101 Firefox/78.0"); $response = $browser->get($url); $answer = $response->content; if ( index( $answer, - 'http://dt2tq5y2ccowebjo.onion/?' ) == 0 + 'http://hbfkuwcbzhcht33fetbiajuh7i6gqupgnyupxcmujiky34drzmpajrid.onion/?' ) == 0 ) { if ( $mytype eq '' ) { @@ -270,7 +270,7 @@ sub GotUrl { $url = 'https://ux.nu/api/short?format=plain&url=' . $myurl; $browser = LWP::UserAgent->new; - $browser->agent("Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0"); + $browser->agent("Mozilla/5.0 (Windows NT 6.1; rv:78.0) Gecko/20100101 Firefox/78.0"); $response = $browser->get($url); $answer = $response->content; if ( index( $answer, 'https://ux.nu/' ) == 0 ) { diff --git a/what-to-do.md b/what-to-do.md index 64937a26..92104ecb 100644 --- a/what-to-do.md +++ b/what-to-do.md @@ -1,14 +1,17 @@ # What you can do to resist Cloudflare? - < [Matthew Prince (@eastdakota)](https://twitter.com/eastdakota) + + -"*I’d suggest this was armchair analysis by kids – it’s hard to take seriously.*" ([source](https://www.theguardian.com/technology/2015/nov/19/cloudflare-accused-by-anonymous-helping-isis)) +[Matthew Prince (@eastdakota)](https://twitter.com/eastdakota) -"*That was simply unfounded paranoia, pretty big difference.*" ([source](https://twitter.com/xxdesmus/status/992757936123359233)) +"*I’d suggest this was armchair analysis by kids – it’s hard to take seriously.*" [t](https://www.theguardian.com/technology/2015/nov/19/cloudflare-accused-by-anonymous-helping-isis) -"*We also work with Interpol and other non-US entities*" ([source](https://twitter.com/eastdakota/status/1203028504184360960)) +"*That was simply unfounded paranoia, pretty big difference.*" [t](https://twitter.com/xxdesmus/status/992757936123359233) - +"*We also work with Interpol and other non-US entities*" [t](https://twitter.com/eastdakota/status/1203028504184360960) + + --- @@ -21,6 +24,7 @@ - If the website you like is using Cloudflare, tell them not to use Cloudflare. + - Whining on Twitter or Mastodon makes _no_ difference. Try to contact to the website owner _if_ you want to make yourself useful. [Cloudflare said](https://github.com/Eloston/ungoogled-chromium/issues/783): ``` @@ -28,7 +32,7 @@ We recommend that you reach out to the administrators for the specific services or sites that you run into issue with and share your experience. ``` -If you don't [ask for it](PEOPLE.md), website owner *never* know this problem. Example below. [Successful example](https://counterpartytalk.org/t/turn-off-cloudflare-on-counterparty-co-plz/164/5). Raise your voice. +If you don't [ask for it](PEOPLE.md), website owner *never* know this problem. Example below. [Successful example](https://counterpartytalk.org/t/turn-off-cloudflare-on-counterparty-co-plz/164/5). You have a problem? Raise your voice now. ``` You are just helping corporate censorship and mass surveillance. @@ -37,14 +41,15 @@ https://trac.torproject.org/projects/tor/ticket/24351 ``` Your web page is in the privacy-abusing private walled-garden of CloudFlare. -See https://github.com/privacytoolsIO/privacytools.io/issues/374#issuecomment-460077544 +See https://codeberg.org/crimeflare/cloudflare-tor/ ``` -- Take some time to read website's privacy policy. It must explain what the "Cloudflare" is, -and ask for permission to share your(user) data with CF. Failure to do so will result in the breach of trust -and the website in question should be avoided. +- Take some time to read website's privacy policy. + - ...if the website is behind Cloudflare or website is using services connected to Cloudflare. + +It must explain what the "_Cloudflare_" is, and ask for permission to share your(user) data with CF. Failure to do so will result in the breach of trust and the website in question should be avoided. -An acceptable privacy policy example is [here](https://archive.is/bDlTz) (look at "Subprocessors" > "Entity Name") +An _acceptable_ privacy policy example is [here](https://archive.is/bDlTz) (look at "Subprocessors" > "Entity Name") ``` I've read your privacy policy and I cannot find the word "Cloudflare". @@ -54,7 +59,7 @@ See https://git.openprivacy.ca/cypherpunks/stop_cloudflare For example, [Liberland Jobs](https://archive.is/daKIr) [privacy policy](https://docsend.com/view/feiwyte) says: - + ... is not going to happen. Cloudflare have their own "privacy policy", and there's no way to hear customer's privacy policy needs. @@ -74,10 +79,15 @@ If Cloudflare leak your information or won't let you to connect to our servers, - Try not to use their service. Remember you are being watched by Cloudflare. + - I'm in your TLS, sniffin' your passworz - Search for other website. There are many alternatives and opportunites on the internet! -- If your browser is Firefox, use one of these add-ons. +- Convince your friends to use [Tor](https://www.torproject.org/download/tor/) on the daily basis. + - Anonymity should be the standard of the open internet! + - Do note that the Tor project dislikes this cloudflare-tor project. + +- If your browser is Firefox, use one of these add-ons below. ### Add-ons @@ -86,15 +96,16 @@ If Cloudflare leak your information or won't let you to connect to our servers, | [Bloku Cloudflaron MITM-Atakon](subfiles/about.bcma.md) | Searxes | [Link](https://searxes.eu.org/) | **Yes** | **Yes** | | [Ĉu ligoj estas vundeblaj al MITM-atako?](subfiles/about.ismm.md) | Searxes | [Link](https://searxes.eu.org/) | No | **Yes** | | [Block Cloudflare MITM Attack](https://trac.torproject.org/projects/tor/attachment/ticket/24351/block_cloudflare_mitm_attack-1.0.14.1-an%2Bfx.xpi) | nullius | [Link](https://github.com/nym-zone/block_cloudflare_mitm_fx) | **Yes** | **Yes** | -| [TPRB](http://sw.qigxev2knhrsewwzi6bnv6y7uuucmyp4cyy3dovv56jug2kfrmmuqzid.onion/) | Sw | [Link](http://sw.qigxev2knhrsewwzi6bnv6y7uuucmyp4cyy3dovv56jug2kfrmmuqzid.onion/) | **Yes** | **Yes** | +| [TPRB](http://sw.ffq3jiqzxucyclt43md7x7zsnuwy6gb33lb46lkkpcpji4lnlaezevyd.onion/) | Sw | [Link](http://sw.ffq3jiqzxucyclt43md7x7zsnuwy6gb33lb46lkkpcpji4lnlaezevyd.onion/) | **Yes** | **Yes** | | [Detect Cloudflare](https://addons.mozilla.org/en-US/firefox/addon/detect-cloudflare/) | Frank Otto | [Link](https://github.com/traktofon/cf-detect) | No | **Yes** | | [True Sight](https://addons.mozilla.org/en-US/firefox/addon/detect-cloudflare-plus/) | claustromaniac | [Link](https://github.com/claustromaniac/detect-cloudflare-plus) | No | **Yes** | | [Which Cloudflare datacenter am I visiting?](https://addons.mozilla.org/en-US/firefox/addon/cf-pop/) | 依云 | [Link](https://github.com/lilydjwg/cf-pop) | No | **Yes** | +(If you want to add _other_ new add-on, please ask about it [here](issues) first) -- "[Decentraleyes](https://addons.mozilla.org/en-US/firefox/addon/decentraleyes/)" can stop connection to "CDNJS (Cloudflare)". (_It prevents a lot of requests from reaching networks, and serves local files to keep sites from breaking._) - -- Convince your friends to use [Tor](https://www.torproject.org/download/tor/) on the daily basis. Anonymity should be the standard of the open internet! +- "[Decentraleyes](https://addons.mozilla.org/en-US/firefox/addon/decentraleyes/)" can stop connection to "CDNJS (Cloudflare)". + - It prevents a lot of requests from reaching networks, and serves local files to keep sites from breaking. + - The developer replied: "[very concerning indeed](https://github.com/Synzvato/decentraleyes/issues/236#issuecomment-352049501)", "[widespread usage severely centralizes the web](https://github.com/Synzvato/decentraleyes/issues/251#issuecomment-366752049)" </details> @@ -107,29 +118,34 @@ If Cloudflare leak your information or won't let you to connect to our servers, </summary> - + -- Do not use Cloudflare solution. You can do better than that, *right*? Here's how to [remove Cloudflare subscriptions, plans, domains, or accounts](https://support.cloudflare.com/hc/en-us/articles/200167776-Removing-subscriptions-plans-domains-or-accounts). +- Do not use Cloudflare solution, Period. + - You can do better than that, *right*? Here's how to [remove Cloudflare subscriptions, plans, domains, or accounts](https://support.cloudflare.com/hc/en-us/articles/200167776-Removing-subscriptions-plans-domains-or-accounts). -- Want more customers? You know what to do. Hint is "above line". +- Want more customers? You know what to do. Hint is "_above line_". + - Hello, you wrote "[We take your privacy seriously](https://it.slashdot.org/story/19/02/19/0033255/stop-saying-we-take-your-privacy-and-security-seriously)" but I got "_Error 403 Forbidden Anonymous Proxy Not Allowed_". Why are you blocking Tor? Or VPN? - + - Using Cloudflare will increase chances of an outage. Visitors can't access to your website if your server is down *or Cloudflare is down*. Did you really think [Cloudflare never go down](https://www.ibtimes.com/cloudflare-down-not-working-sites-producing-504-gateway-timeout-errors-2618008)? [Another](https://twitter.com/Jedduff/status/1097875615997399040) [sample](https://twitter.com/search?f=tweets&vertical=default&q=Cloudflare%20is%20having%20problems). [Need more](PEOPLE.md)? -- Using Cloudflare to proxy your "API service", "Client(software) update server" or "RSS feed" will harm your customer. A customer called you and said "_I can't use your API anymore_", and you have no idea what is going on. Cloudflare can [silently block your customer](PEOPLE.md). [Do you think it is okay](https://twitter.com/Skyfusion89/status/1101596592426151937)? +- Using Cloudflare to proxy your "API service", "Client(software) [update server](https://forums.clamwin.com/viewtopic.php?t=4915)" or "RSS feed" will harm your customer. A customer called you and said "_I can't use your API anymore_", and you have no idea what is going on. Cloudflare can [silently block your customer](PEOPLE.md). [Do you think it is okay](https://twitter.com/Skyfusion89/status/1101596592426151937)? + - There are many RSS reader client and RSS reader online service. Why are you publishing RSS feed if you're not allowing people to subscribe? - + - Do you need HTTPS certificate? Use "[Let's Encrypt](https://letsencrypt.org/)" or just buy it from CA company. - Do you need [DNS server](https://twitter.com/IngeniousAppsIA/status/1187730384492077057)? Can't set up your own server? Then how about [1984 FreeDNS](https://www.1984hosting.com/), [Hurricane Electric Free DNS](https://dns.he.net/), [Dyn.com](https://dyn.com/dns/) or [this (warning: Admin delete your account if you use TOR)](https://freedns.afraid.org/)? + - By the way, Searxes is using `1984 DNS`. - Looking for hosting service? "Free" only? Well, how about [Byethost](https://byet.host/free-hosting), [Surge](https://surge.sh/), [Github Pages](https://pages.github.com/) or [this](https://www.reddit.com/r/webdev/comments/5m8tr4/how_do_i_host_the_website_i_just_built/dc1qpk7/)? - Are you using "_cloudflare-ipfs.com_"? Do you know [Cloudflare IPFS is bad](PEOPLE.md)? - Install Web Application Firewall (such as OWASP) and Fail2Ban on _your_ server and configure it _properly_. + - Blocking Tor is not a solution. Don't punish everyone just for small bad users. - If you want to know more alternative solutions, take a look at [this blog's "Alternative solutions" section](http://www.unixsheikh.com/articles/stay-away-from-cloudflare.html). @@ -210,12 +226,14 @@ header('HTTP/1.1 406 Not Acceptable'); echo <<<CLOUDFLARED Thank you for visiting ourwebsite.com!<br /> We are sorry, but we can't serve you because your connection is being intercepted by Cloudflare.<br /> -Please read https://git.openprivacy.ca/cypherpunks/stop_cloudflare for more information.<br /> +Please read https://codeberg.org/crimeflare/cloudflare-tor for more information.<br /> CLOUDFLARED; die(); ``` -- Set up [Tor Onion Service](https://www.torproject.org/docs/onion-services.html.en) or I2P insite if you believe in freedom and welcome anonymous users. +- Set up [Tor Onion Service](https://www.torproject.org/docs/onion-services.html.en) or I2P insite _if_ you believe in freedom and welcome anonymous users. + - Tor developers will thank you. + - Tor users will endorse your service! Pro-privacy! - Ask for advice from other [Clearnet/Tor dual website operators](https://trac.torproject.org/projects/tor/wiki/org/projects/WeSupportTor) and make anonymous friends! :) @@ -243,10 +261,11 @@ die(); | [Onion Browser](https://itunes.apple.com/us/app/onion-browser/id519296448?mt=8) | Mike Tigas | [Link](https://github.com/OnionBrowser/OnionBrowser/issues) | Apple iOS | -Other software's privacy is imperfect. This doesn't mean Tor browser is "perfect". +Other software's privacy is imperfect. This doesn't mean Tor browser is "_perfect_". There is no 100% secure nor 100% private on the internet and technology. - Don't want to use "Tor"? You can use _any browser_ with [Tor daemon](https://packages.debian.org/search?searchon=names&keywords=tor). + - Note that the Tor project don't like this. Use `Tor Browser` if you are able to do so. - It may be possible to use "Tor Browser" without Tor: @@ -268,7 +287,7 @@ Let's talk about _other software's privacy_... - Mozilla officially [rejected this ticket](https://bugzilla.mozilla.org/show_bug.cgi?id=1426618) and they [have](https://www.reddit.com/r/linux/comments/9hh3gc/to_unsuspecting_admins_firefox_continues_to_send/) / [too](https://mashable.com/2017/12/16/mr-robot-looking-glass-mozilla-firefox-backlash/) / [many](https://ungleich.ch/en-us/cms/blog/2018/08/04/mozillas-new-dns-resolution-is-dangerous/) / [problems](https://blog.mozilla.org/addons/2019/05/04/update-regarding-add-ons-in-firefox/comment-page-6/#comment-226187). Want more? [Mozilla - Devil Incarnate](https://digdeeper.neocities.org/ghost/mozilla.html). -- "Firefox Focus"(Firefox Klar) [is a joke](https://github.com/mozilla-mobile/focus-android/issues/1743). +- "Firefox Focus/Firefox Klar [is a joke](https://github.com/mozilla-mobile/focus-android/issues/1743). They promised to turn off telemetry but they [changed it](https://github.com/mozilla-mobile/focus-android/issues/4210). - PaleMoon(Basilisk) developer [loves Cloudflare](https://github.com/mozilla-mobile/focus-android/issues/1743#issuecomment-345993097). Pale Moon's Archive Server [hacked and spread malware for 18 Months](https://www.reddit.com/r/privacytoolsIO/comments/cc808y/pale_moons_archive_server_hacked_and_spread/)!! He also hate Tor users - "[Let it be hostile towards Tor. I think most sites should be hostile towards Tor considering its extremely high abuse factor.](https://github.com/yacy/yacy_search_server/issues/314#issuecomment-565932097)". (abuse rate over Tor is NOT "extremely high". there's a study about it) @@ -286,7 +305,7 @@ Let's talk about _other software's privacy_... - Opera spyware level: [Extremely High](https://spyware.neocities.org/articles/opera.html) -Therefore we recommend above table only. Nothing else. +Therefore we recommend above table only. _Nothing else_. </details> @@ -320,10 +339,10 @@ Therefore we recommend above table only. Nothing else. - To disable DoH, enter *about:config?filter=network.trr* in the address bar then set "*network.trr.mode*" to 5 to completely disable it. The value "5" [means "Off by choice"](https://gist.github.com/bagder/5e29101079e9ac78920ba2fc718aceec). - + - If you would like to use non-ISP DNS, consider using [OpenNIC Tier2 DNS service](https://wiki.opennic.org/start) - or any of non-Cloudflare DNS services. + or any of non-Cloudflare DNS services. - You can use Tor as DNS resolver. If you're not Tor expert, [ask question here](https://tor.stackexchange.com/). @@ -392,7 +411,11 @@ dystopic status quo that results. Resist! ``` +``` +Someday, you'll know why we wrote this. +``` + ### Now, what did you do today? -
\ No newline at end of file +
\ No newline at end of file |