Comment by lostlogin
Comment by lostlogin 3 days ago
I don’t know the history here, do you have some examples?
My usage is pretty much limited to their DNS.
Comment by lostlogin 3 days ago
I don’t know the history here, do you have some examples?
My usage is pretty much limited to their DNS.
And in places where CGNAT is in use, so that many people are on the same IP address, and botnets are active on that address.
I live in India in such a situation, and most of the time it’s not too bad, but I still encounter Cloudflare CAPTCHAs pretty frequently. At times, it’s been almost half the web is blocking you. And occasionally, it actually is blocking you, not just a CAPTCHA. It’s also not rare, when being more aggressively blocked, for a site to break because it tries loading scripts from another domain, which is then CAPTCHAing so that scripts just won’t load.
Back when I lived in Australia, I practically never got Cloudflare blocks.
The mechanism may be understandable and even justifiable to a considerable extent, but the poor definitely end up suffering more from Cloudflare than the rich.
They’ve got a pretty long history of helping scammers and criminals.
https://www.spamhaus.org/resource-hub/service-providers/too-...
So the better internet is for everyone, is that so bad?
I’d rather have them help everyone than make arbitrary decisions about who gets served. That’s what we have the legal system for.
It gets into the weeds fast. I thought I was all for free speech, then the Christchurch terrorist shared his live stream of him killing people.
The legal system is too slow and private companies have a dubious record of what they police. What’s a good model to follow?
> The legal system is too slow and private companies have a dubious record of what they police. What’s a good model to follow?
Get the legal system in shape. Yeet everyone above pension age out of public office so that we finally may get people into power who grew up with smartphones instead of old farts who let their secretaries print out e-mails and type audio recordings into letters. Then, do the same for police leadership and DAs, yeet the brawns and get the brains. You can't prosecute IT crimes if your average police officer doesn't even know what a proxy or a money mule scam is or if the DA is too goddamn lazy to file a subpoena because the damage is less than 950 dollars.
Then, crack the whip on domestic telcos, ISPs and hosters. Whoever hosts anything connected with more than 200 users has to have a 24/7/365 abuse hotline that has the manpower and authority to investigate abuse claims and remediate them (i.e. disconnect whoever is causing the problem until this party has remediated the issue on their end) in less than four hours.
Then, crack the whip on manufacturers of smart devices. Mandate that every Thing sold with an internet connectivity get at least security updates for a decade, and that the full source code for everything in it including signing keys for firmware be submitted to Library of Congress or whatever archive and released when the manufacturer either goes bust or declares end of life for that Thing.
And then, get the State Department into shape. Countries from which malicious traffic operates or where money from scams gets exfiltrated to get half a year to get their shit in order and be good netizens, or they get cut off from Western nations. No SWIFT, no Internet, no SS7.
The Internet at its fundamental core (cough BGP) runs on the assumptions of a high-trust society, which has led to issues all over the place as the world has shifted towards a no-trust-at-all lawless society and as it is impossible to uproot probably trillions of dollars worth of infrastructure, drastic action needs to be taken to restore the Internet to a high-trust place again.
If a killer wanted to make a scene, they could just do it in the real world right in front of people instead of on Facebook.
These days, with everyone having a camera strapped to their hands or face, that might not work.
> I’d rather have them help everyone than make arbitrary decisions about who gets served. That’s what we have the legal system for.
They don't get to have common carrier status without any of the regulation or obligations that go with it.
I guess people downvoting this didn't know - this is something that happens over and over again: https://www.reddit.com/r/CloudFlare/comments/zmx223/6_ddos_f...
They're pretty reviled by people who go out of their way to be private via things like VPNs and locked down browsers, because that constantly trips their bot detection and makes using the web miserable.