Readit News logoReadit News
xxdesmus commented on Ask HN: Why does Cloudflare not remove reported phishing sites?    · Posted by u/justmarc
xxdesmus · 22 days ago
I run the trust & safety team at Cloudflare.

In the vast majority of cases, Cloudflare is not the hosting provider of a website resolving to our IPs. In those cases we have no capacity to remove content hosted by others. In those cases we can place a phishing warning page (like Google safe browsing) to warn and educate users that they were nearly phished. If we simply terminated a website it would not remove the content, and the user wouldn’t learn or realize they almost just got phished. It’d be the worst of both worlds. In the rare case where we are the host we place a non-bypassable block in front to make protect users.

xxdesmus commented on Cloudflare's 2024 Transparency Reports – now live with new data and a new format   blog.cloudflare.com/cloud... · Posted by u/xxdesmus
xxdesmus · a year ago
While Cloudflare has been publishing transparency reports for a long time, this year we chose to revamp the report in light of new reporting obligations under the DSA, and our goal of making our reports both comprehensive and easy to understand. Before you dive into the reports, learn more about Cloudflare’s longstanding commitment to transparency reporting and the key updates we made in this year’s reports.

1H and 2H 2024 reports are now live.

xxdesmus commented on Before you buy a domain name, first check to see if it's haunted   bryanbraun.com/2024/10/25... · Posted by u/bryanbraun
Havoc · a year ago
Also be careful connecting new domains to cloudflare. It has a habit of adding old info from presumably a previous owner.

Managed to get a takedown notice thanks to that idiotic "feature" while not even aware the domain is serving anything

xxdesmus · a year ago
Please drop me an email with what you’re seeing - justin (at) cloudflare.com ?

That doesn’t sound like old info - that sounds like someone might still be reporting it for abuse even after the domain changed owners.

xxdesmus commented on Show HN: Host a Website in the URL   smolsite.zip/UEsDBBQAAgAI... · Posted by u/acidx
xxdesmus · 3 years ago
I look forward to the phishinhg. Hopefully you can block known bad hashes.
xxdesmus commented on Tell HN: 1Password 8.10.8 update corrupted data    · Posted by u/clumsysmurf
xxdesmus · 3 years ago
1) Thanks for the heads up 2) Is this the beta channel? or official builds? 3) You've already notified 1Password of this possible bug/risk?
xxdesmus commented on Show HN: A Google Reader-inspired RSS reader   boredreading.com/?1... · Posted by u/khet
xxdesmus · 3 years ago
Self hosting option? Looks great, but I’d rather avoid a SaaS service if possible.
xxdesmus commented on Prose.sh – A blog platform for hackers   prose.sh/... · Posted by u/jstanley
gtirloni · 4 years ago
> In order for this to work, 2 DNS records need to be created: >CNAME for the domain to prose

I don't think RFC 1034 even allows that (zone apex must be A record).

https://serverfault.com/questions/613829/why-cant-a-cname-re...

xxdesmus · 4 years ago
CNAME flattening works just fine and is supported by a variety of DNS providers at this point, but yes — there’s an RFC otherwise.
x

u/xxdesmus

KarmaCake day354April 25, 2011
About
Head of Trust & Safety @Cloudflare.

Former Threat Intel lead @Cloudflare.

Former Head of Support @Cloudflare.

[ my public key: https://keybase.io/xxdesmus; my proof: https://keybase.io/xxdesmus/sigs/AG0bUkTiBs4OzR1wX3GxsemdzN9ha4auRytqLYZcjHY ]

View Original