diff --git a/image/cloudflare_withprivaon.mp4 b/image/cloudflare_withprivaon.mp4 new file mode 100644 index 0000000..de893dc Binary files /dev/null and b/image/cloudflare_withprivaon.mp4 differ diff --git a/readme/en.short.md b/readme/en.short.md index 96139a8..c8445a7 100644 --- a/readme/en.short.md +++ b/readme/en.short.md @@ -12,7 +12,7 @@ ![CrimeFlarE logo](../image/crimeflare-logo.png) -Are you already aware of the problems of Cloudflare? +Are you already aware of the problems of [Cloudflare](https://www.cloudflare.com/)? You might want to check: - [Alternatives](#alternatives) @@ -22,17 +22,17 @@ You might want to check: ## Who are we? -`CrimeFlarE` is a group of volunteer Tor, privacy and net neutrality +`CrimeFlarE`(CFE) is a group of volunteer [Tor](https://www.torproject.org/), privacy and net neutrality enthusiasts working to counter CloudFlare’s oppressive attack on the Tor community and reduce the harms CloudFlare brings to all users (Tor users and clearnet users). ## Who is Cloudflare? -Cloudflare is the world's largest man-in-the-middle proxy. Technically it is called "reverse proxy". +Cloudflare is the world's largest man-in-the-middle proxy. Technically it is called "[reverse proxy](https://en.wikipedia.org/wiki/Reverse_proxy)". This means that it sits between you and the server which sent you webpages and images. -Cloudflare is a content delivery network, which means that it has different +Cloudflare is a [content delivery network](https://en.wikipedia.org/wiki/Content_delivery_network), which means that it has different servers in different locations, so that websites are supposed to be better reachable. This has some bad sides. @@ -68,7 +68,7 @@ Read more about the [reCAPTCHA problem](../subfiles/recaptcha-problem.md). #### Project Honey Pot -"Project Honey Pot" is a project which collects a lot of personal data +"[Project Honey Pot](https://www.projecthoneypot.org/)" is a project which collects a lot of personal data and much of that data is from innocent people who deserve privacy. Cloudflare was created by people who worked on that project. US DHS showed interest to this project. @@ -81,13 +81,17 @@ Cloudflare is not convenient for many visitors of your site. You will lose visitors when you choose Cloudflare. Many people who helped writing this file even blocked by Cloudflare. -Did you know that you can lose visitors because your site doesn't load in a few seconds? +Did you know that you can lose visitors because your site [doesn't load in a few seconds](https://www.hostingmanual.net/3-seconds-how-website-speed-impacts-visitors-sales/)? Cloudflare often makes visitors wait for more than few seconds. Many visitors will just leave your site when they see this. ![](https://codeberg.org/crimeflare/cloudflare-tor/media/branch/master/image/onemorestep.jpg) +No one wants to click multiple images just to read your website. + +Here is an [example video](../subfiles/cloudflare-video-01.md) of CloudFlare blocking user who is using privacy add-ons. + ### Other problems diff --git a/subfiles/cloudflare-alternatives.md b/subfiles/cloudflare-alternatives.md index dcb7ab9..95ba38f 100644 --- a/subfiles/cloudflare-alternatives.md +++ b/subfiles/cloudflare-alternatives.md @@ -7,39 +7,54 @@ ## Self-hosting -Self-hosting often works great, but it requires some effort to setup. It is -more aimed at technical people. +Self-hosting often works great, but it requires some effort to setup. +It is more aimed at technical people. We might create a guide for some self-hosting basics which don't require Cloudflare. [IPFS](https://ipfs.io/) may be worth consideration if performance is the main concern. +`Apache` is vulnerable to various low-bandwidth attacks. Use other server software such as [Caddy](https://caddyserver.com/), [lighttpd](https://www.lighttpd.net/) or [nginx](https://nginx.org/). + + +## Best way to protect your server from DDoS +- Avoid any third-party service that _can intercept_ HTTP traffic (like Cloudflare) +- Install WAF on your loadbalancer. + - Even simple [ModSecurity](https://www.modsecurity.org/) can save you. +- Add rate-limit to your nftable(firewall) and server software. + - Just drop the excessive connection. + ## Alternatives | Alternative | Drawback | Price | Link | | ----------------- | --------------------------------- | ------ | ---- | +| Akamai | can be used to block Tor | ? | https://akamai.net/ | +| BunnyCDN | ? | $0.01+ | https://bunnycdn.com/ | | Codeberg pages | no custom domain support; tor hostility | Free | https://pages.codeberg.org/ | -| [eQualitie](https://equalit.ie/) | not gratis | gratis during COVID19 | https://equalit.ie/ | +| Gitee pages | must understand Chinese | Free | https://gitee.com/help/articles/4136 | | Github pages | uses Microsoft servers | Free | https://pages.github.com/ (WARNING: Tor/VPN users will get their [account blocked automatically](https://github.com/crimeflare/cloudflare-tor) by Github) | +| Level 3 | ? | Enterprise | https://www.centurylink.com/ | | PerimeterX | not gratis | ? | - | -| [sucuri](https://sucuri.net) | not gratis; tor hostility at ~3.483% | $200+ | https://sucuri.net/| +| Sharktech DDoS Solutions | ? | ? | https://sharktech.net/ | | Surge.sh | uses custom servers | Free | https://surge.sh/ | +| Voxility | ? | ? | https://www.voxility.com/ | +| [eQualitie](https://equalit.ie/) | not gratis | gratis during COVID19 | https://equalit.ie/ | +| neoCities | static pages | Free | https://neocities.org/ | +| sucuri | not gratis; tor hostility at ~3.483% | $200+ | https://sucuri.net/| ## Not researched yet ### CDNJS -CDNJS is sponsored by Cloudflare. It might use it in the background. +`CDNJS` is sponsored by Cloudflare. It might use it in the background. ## Why X is not included | X | Reason | | ------- | ------ | +| Cloudflare Argo | Uses Cloudflare. | | Gitlab pages | GitLab is now Cloudflared | | Imperva | Uses Cloudflare. | -| jsDelivr | Uses Cloudflare, see their [network page](https://www.jsdelivr.com/network) | | Netlify | Uses Amazon AWS which is also a content delivery network. It would be hypocritical to include it. | | Siteground | Tor-hostile people. | +| jsDelivr | Uses Cloudflare, see their [network page](https://www.jsdelivr.com/network) | ## History Sucuri and eQualitie have a history of CloudFlare patronage, but no longer. - - -[//]: # ( go.impv is CF. | [Imperva](https://www.imperva.com) | not gratis; tor hostility at ~3.411% | ? | https://www.imperva.com |) diff --git a/subfiles/cloudflare-video-01.md b/subfiles/cloudflare-video-01.md new file mode 100644 index 0000000..9ba9efd --- /dev/null +++ b/subfiles/cloudflare-video-01.md @@ -0,0 +1 @@ + \ No newline at end of file