Hotline: +1 408 850 7708
       Subscribe to Blog        Get promotion emails      Select Country:

Where Is X4?

A few months ago, we were pleased to release the latest evolution of the cPanel User Interface: Paper Lantern. Among all of the excitement and outreach surrounding Paper Lantern during the last few months, one theme kept recurring, one question … Continue reading

Posted in Blog Posts | Leave a comment

The Hidden Costs of Heartbleed

A quick followup to our last blog post on our decision to reissue and revoke all of CloudFlare’s customers’ SSL certificates. One question we’ve received is why we didn’t just reissue and revoke all SSL certificates as soon as we … Continue reading

Posted in Blog Posts | Leave a comment

The Heartbleed Aftermath: all CloudFlare certificates revoked and reissued

Eleven days ago the Heartbleed vulnerability was publicly announced. Last Friday, we issued the CloudFlare Challenge: Heartbleed and simultaneously started the process of revoking and reissuing all the SSL certificates that CloudFlare manages for our customers. That process is now … Continue reading

Posted in Blog Posts | Leave a comment

Certificate Revocation and Heartbleed

As you may have noticed, the CloudFlare Heartbleed Challenge has been solved. The private key for the site cloudflarechallenge.com has been obtained by several authorized attackers via the Heartbleed exploit. Any person who obtained the private key will be able … Continue reading

Posted in Blog Posts | Leave a comment

The Results of the CloudFlare Challenge

Earlier today we announced the Heartbleed Challenge. We set up a nginx server with a vulnerable version of OpenSSL and challenged the community to steal its private key. The world was up to the task: two people independently retrieved private … Continue reading

Posted in Blog Posts | Leave a comment

Answering the Critical Question: Can You Get Private SSL Keys Using Heartbleed?

Update: Below is what we thought as of 12:27pm UTC. To verify our belief we crowd sourced the investigation. It turns out we were wrong. While it takes effort, it is possible to extract private SSL keys. The challenge was … Continue reading

Posted in Blog Posts | Leave a comment

Jetpack for WordPress: automatic protection

As we’ve said before, lots of our users run WordPress on their websites and its popularity makes it a big target. So when a new vulnerability is discovered, acting quickly is prudent. Jetpack is an extremely popular plugin to provide … Continue reading

Posted in Blog Posts | Leave a comment

Staying ahead of OpenSSL vulnerabilities

Today a new vulnerability was announced in OpenSSL 1.0.1 that allows an attacker to reveal up to 64kB of memory to a connected client or server (CVE-2014-0160). We fixed this vulnerability last week before it was made public. All sites … Continue reading

Posted in Blog Posts | Leave a comment

Introducing CNAME Flattening: RFC-Compliant CNAMEs at a Domain's Root

This post is about a new feature we’ve been quietly rolling out over the last few months. Last week we began enabling it for everyone by default. It’s called CNAME Flattening and it’s a bit geeky, but very useful and … Continue reading

Posted in Blog Posts | Leave a comment

The weird and wonderful world of DNS LOC records

A cornerstone of CloudFlare’s infrastructure is our ability to serve DNS requests quickly and handle DNS attacks. To do both those things we wrote out own authoritative DNS server called RRDNS in Go. Because of it we’ve been able to … Continue reading

Posted in Blog Posts | Leave a comment
Copyright © 2014. ReadySpace LLC. All rights reserved. Terms of Use Follow Us: