From b2178b4a3ee930ee1725ecf2264bfa8a157f8950 Mon Sep 17 00:00:00 2001 From: example Date: Tue, 1 Sep 2020 08:20:52 +0200 Subject: Upload files to 'image' --- image/cloudflare_withprivaon.mp4 | Bin 0 -> 3748374 bytes 1 file changed, 0 insertions(+), 0 deletions(-) create mode 100644 image/cloudflare_withprivaon.mp4 diff --git a/image/cloudflare_withprivaon.mp4 b/image/cloudflare_withprivaon.mp4 new file mode 100644 index 00000000..de893dcb Binary files /dev/null and b/image/cloudflare_withprivaon.mp4 differ -- cgit v1.2.3 From 11510778f9a9817189a1e2124b4b7673a04b8a4f Mon Sep 17 00:00:00 2001 From: example Date: Tue, 1 Sep 2020 08:27:03 +0200 Subject: Update 'readme/en.short.md' --- readme/en.short.md | 14 ++++++++------ 1 file changed, 8 insertions(+), 6 deletions(-) diff --git a/readme/en.short.md b/readme/en.short.md index 96139a8a..0fa2d939 100644 --- a/readme/en.short.md +++ b/readme/en.short.md @@ -12,7 +12,7 @@ ![CrimeFlarE logo](../image/crimeflare-logo.png) -Are you already aware of the problems of Cloudflare? +Are you already aware of the problems of [Cloudflare](https://www.cloudflare.com/)? You might want to check: - [Alternatives](#alternatives) @@ -22,17 +22,17 @@ You might want to check: ## Who are we? -`CrimeFlarE` is a group of volunteer Tor, privacy and net neutrality +`CrimeFlarE`(CFE) is a group of volunteer [Tor](https://www.torproject.org/), privacy and net neutrality enthusiasts working to counter CloudFlare’s oppressive attack on the Tor community and reduce the harms CloudFlare brings to all users (Tor users and clearnet users). ## Who is Cloudflare? -Cloudflare is the world's largest man-in-the-middle proxy. Technically it is called "reverse proxy". +Cloudflare is the world's largest man-in-the-middle proxy. Technically it is called "[reverse proxy](https://en.wikipedia.org/wiki/Reverse_proxy)". This means that it sits between you and the server which sent you webpages and images. -Cloudflare is a content delivery network, which means that it has different +Cloudflare is a [content delivery network](https://en.wikipedia.org/wiki/Content_delivery_network), which means that it has different servers in different locations, so that websites are supposed to be better reachable. This has some bad sides. @@ -68,7 +68,7 @@ Read more about the [reCAPTCHA problem](../subfiles/recaptcha-problem.md). #### Project Honey Pot -"Project Honey Pot" is a project which collects a lot of personal data +"[Project Honey Pot](https://www.projecthoneypot.org/)" is a project which collects a lot of personal data and much of that data is from innocent people who deserve privacy. Cloudflare was created by people who worked on that project. US DHS showed interest to this project. @@ -81,13 +81,15 @@ Cloudflare is not convenient for many visitors of your site. You will lose visitors when you choose Cloudflare. Many people who helped writing this file even blocked by Cloudflare. -Did you know that you can lose visitors because your site doesn't load in a few seconds? +Did you know that you can lose visitors because your site [doesn't load in a few seconds](https://www.hostingmanual.net/3-seconds-how-website-speed-impacts-visitors-sales/)? Cloudflare often makes visitors wait for more than few seconds. Many visitors will just leave your site when they see this. ![](https://codeberg.org/crimeflare/cloudflare-tor/media/branch/master/image/onemorestep.jpg) +Here is an [example video](../subfiles/cloudflare-video-01.md) of CloudFlare blocking user who is using privacy add-ons. + ### Other problems -- cgit v1.2.3 From 0337dc72809ef67a7c5d88bf39c54b38d5afa008 Mon Sep 17 00:00:00 2001 From: example Date: Tue, 1 Sep 2020 08:28:15 +0200 Subject: Add 'subfiles/cloudflare-video-01.md' --- subfiles/cloudflare-video-01.md | 1 + 1 file changed, 1 insertion(+) create mode 100644 subfiles/cloudflare-video-01.md diff --git a/subfiles/cloudflare-video-01.md b/subfiles/cloudflare-video-01.md new file mode 100644 index 00000000..a6703dc5 --- /dev/null +++ b/subfiles/cloudflare-video-01.md @@ -0,0 +1 @@ + \ No newline at end of file -- cgit v1.2.3 From 416d85e18089033bc4f28ba9788da8f99e8e9b39 Mon Sep 17 00:00:00 2001 From: example Date: Tue, 1 Sep 2020 08:28:44 +0200 Subject: Update 'subfiles/cloudflare-video-01.md' --- subfiles/cloudflare-video-01.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/subfiles/cloudflare-video-01.md b/subfiles/cloudflare-video-01.md index a6703dc5..9ba9efd1 100644 --- a/subfiles/cloudflare-video-01.md +++ b/subfiles/cloudflare-video-01.md @@ -1 +1 @@ - \ No newline at end of file + \ No newline at end of file -- cgit v1.2.3 From 9a69e32219d551fc54c2f4cbdaaa9360d5eff60c Mon Sep 17 00:00:00 2001 From: example Date: Tue, 1 Sep 2020 08:41:13 +0200 Subject: Update 'subfiles/cloudflare-alternatives.md' --- subfiles/cloudflare-alternatives.md | 26 +++++++++++++++++--------- 1 file changed, 17 insertions(+), 9 deletions(-) diff --git a/subfiles/cloudflare-alternatives.md b/subfiles/cloudflare-alternatives.md index dcb7ab96..c21e2fa0 100644 --- a/subfiles/cloudflare-alternatives.md +++ b/subfiles/cloudflare-alternatives.md @@ -7,39 +7,47 @@ ## Self-hosting -Self-hosting often works great, but it requires some effort to setup. It is -more aimed at technical people. +Self-hosting often works great, but it requires some effort to setup. +It is more aimed at technical people. We might create a guide for some self-hosting basics which don't require Cloudflare. [IPFS](https://ipfs.io/) may be worth consideration if performance is the main concern. +`Apache` is vulnerable to various low-bandwidth attacks. Use other server software such as {lighttpd](https://www.lighttpd.net/) or [nginx](https://nginx.org/). + + ## Alternatives | Alternative | Drawback | Price | Link | | ----------------- | --------------------------------- | ------ | ---- | +| Akamai | can be used to block Tor | ? | https://akamai.net/ | +| BunnyCDN | ? | $0.01+ | https://bunnycdn.com/ | | Codeberg pages | no custom domain support; tor hostility | Free | https://pages.codeberg.org/ | -| [eQualitie](https://equalit.ie/) | not gratis | gratis during COVID19 | https://equalit.ie/ | +| Gitee pages | must understand Chinese | Free | https://gitee.com/help/articles/4136 | | Github pages | uses Microsoft servers | Free | https://pages.github.com/ (WARNING: Tor/VPN users will get their [account blocked automatically](https://github.com/crimeflare/cloudflare-tor) by Github) | +| Level 3 | ? | Enterprise | https://www.centurylink.com/ | | PerimeterX | not gratis | ? | - | -| [sucuri](https://sucuri.net) | not gratis; tor hostility at ~3.483% | $200+ | https://sucuri.net/| +| Sharktech DDoS Solutions | ? | ? | https://sharktech.net/ | | Surge.sh | uses custom servers | Free | https://surge.sh/ | +| Voxility | ? | ? | https://www.voxility.com/ | +| [eQualitie](https://equalit.ie/) | not gratis | gratis during COVID19 | https://equalit.ie/ | +| neoCities | static pages | Free | https://neocities.org/ | +| sucuri | not gratis; tor hostility at ~3.483% | $200+ | https://sucuri.net/| ## Not researched yet ### CDNJS -CDNJS is sponsored by Cloudflare. It might use it in the background. +`CDNJS` is sponsored by Cloudflare. It might use it in the background. ## Why X is not included | X | Reason | | ------- | ------ | +| Cloudflare Argo | Uses Cloudflare. | | Gitlab pages | GitLab is now Cloudflared | | Imperva | Uses Cloudflare. | -| jsDelivr | Uses Cloudflare, see their [network page](https://www.jsdelivr.com/network) | | Netlify | Uses Amazon AWS which is also a content delivery network. It would be hypocritical to include it. | | Siteground | Tor-hostile people. | +| jsDelivr | Uses Cloudflare, see their [network page](https://www.jsdelivr.com/network) | ## History Sucuri and eQualitie have a history of CloudFlare patronage, but no longer. - - -[//]: # ( go.impv is CF. | [Imperva](https://www.imperva.com) | not gratis; tor hostility at ~3.411% | ? | https://www.imperva.com |) -- cgit v1.2.3 From 7b8965f2a02639846c5ea35661111ef3dae662b8 Mon Sep 17 00:00:00 2001 From: example Date: Tue, 1 Sep 2020 08:52:12 +0200 Subject: Update 'subfiles/cloudflare-alternatives.md' --- subfiles/cloudflare-alternatives.md | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/subfiles/cloudflare-alternatives.md b/subfiles/cloudflare-alternatives.md index c21e2fa0..288eb9fd 100644 --- a/subfiles/cloudflare-alternatives.md +++ b/subfiles/cloudflare-alternatives.md @@ -13,9 +13,16 @@ It is more aimed at technical people. We might create a guide for some self-hosting basics which don't require Cloudflare. [IPFS](https://ipfs.io/) may be worth consideration if performance is the main concern. -`Apache` is vulnerable to various low-bandwidth attacks. Use other server software such as {lighttpd](https://www.lighttpd.net/) or [nginx](https://nginx.org/). +`Apache` is vulnerable to various low-bandwidth attacks. Use other server software such as [Caddy](https://caddyserver.com/), [lighttpd](https://www.lighttpd.net/) or [nginx](https://nginx.org/). +## Best way to protect your server from DDoS +- Avoid any service that _can intercept_ HTTP traffic (like Cloudflare) +- Install WAF on your loadbalancer. + - Even simple [ModSecurity](https://www.modsecurity.org/) can save you. +- Add rate-limit to your nftable(firewall) and server software. + - Just drop the excessive connection. + ## Alternatives -- cgit v1.2.3 From e40ebcb50ceff242f97523d558022ca422f5bbee Mon Sep 17 00:00:00 2001 From: example Date: Tue, 1 Sep 2020 08:52:52 +0200 Subject: Update 'subfiles/cloudflare-alternatives.md' --- subfiles/cloudflare-alternatives.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/subfiles/cloudflare-alternatives.md b/subfiles/cloudflare-alternatives.md index 288eb9fd..95ba38fa 100644 --- a/subfiles/cloudflare-alternatives.md +++ b/subfiles/cloudflare-alternatives.md @@ -17,7 +17,7 @@ We might create a guide for some self-hosting basics which don't require Cloudfl ## Best way to protect your server from DDoS -- Avoid any service that _can intercept_ HTTP traffic (like Cloudflare) +- Avoid any third-party service that _can intercept_ HTTP traffic (like Cloudflare) - Install WAF on your loadbalancer. - Even simple [ModSecurity](https://www.modsecurity.org/) can save you. - Add rate-limit to your nftable(firewall) and server software. -- cgit v1.2.3 From fb84c4ca4f2e7383d3c4e8eee7a9a4a5cada89fb Mon Sep 17 00:00:00 2001 From: example Date: Tue, 1 Sep 2020 08:54:59 +0200 Subject: Update 'readme/en.short.md' --- readme/en.short.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/readme/en.short.md b/readme/en.short.md index 0fa2d939..c8445a75 100644 --- a/readme/en.short.md +++ b/readme/en.short.md @@ -88,6 +88,8 @@ Many visitors will just leave your site when they see this. ![](https://codeberg.org/crimeflare/cloudflare-tor/media/branch/master/image/onemorestep.jpg) +No one wants to click multiple images just to read your website. + Here is an [example video](../subfiles/cloudflare-video-01.md) of CloudFlare blocking user who is using privacy add-ons. -- cgit v1.2.3