PR 26
This commit is contained in:
commit
620d25bcaa
Binary file not shown.
|
@ -12,7 +12,7 @@
|
|||
|
||||
![CrimeFlarE logo](../image/crimeflare-logo.png)
|
||||
|
||||
Are you already aware of the problems of Cloudflare?
|
||||
Are you already aware of the problems of [Cloudflare](https://www.cloudflare.com/)?
|
||||
|
||||
You might want to check:
|
||||
- [Alternatives](#alternatives)
|
||||
|
@ -22,17 +22,17 @@ You might want to check:
|
|||
|
||||
## Who are we?
|
||||
|
||||
`CrimeFlarE` is a group of volunteer Tor, privacy and net neutrality
|
||||
`CrimeFlarE`(CFE) is a group of volunteer [Tor](https://www.torproject.org/), privacy and net neutrality
|
||||
enthusiasts working to counter CloudFlare’s oppressive attack on the Tor
|
||||
community and reduce the harms CloudFlare brings to all users (Tor users and
|
||||
clearnet users).
|
||||
|
||||
## Who is Cloudflare?
|
||||
|
||||
Cloudflare is the world's largest man-in-the-middle proxy. Technically it is called "reverse proxy".
|
||||
Cloudflare is the world's largest man-in-the-middle proxy. Technically it is called "[reverse proxy](https://en.wikipedia.org/wiki/Reverse_proxy)".
|
||||
This means that it sits between you and the server which sent you webpages and images.
|
||||
|
||||
Cloudflare is a content delivery network, which means that it has different
|
||||
Cloudflare is a [content delivery network](https://en.wikipedia.org/wiki/Content_delivery_network), which means that it has different
|
||||
servers in different locations, so that websites are supposed to be better
|
||||
reachable. This has some bad sides.
|
||||
|
||||
|
@ -68,7 +68,7 @@ Read more about the [reCAPTCHA problem](../subfiles/recaptcha-problem.md).
|
|||
|
||||
#### Project Honey Pot
|
||||
|
||||
"Project Honey Pot" is a project which collects a lot of personal data
|
||||
"[Project Honey Pot](https://www.projecthoneypot.org/)" is a project which collects a lot of personal data
|
||||
and much of that data is from innocent people who deserve privacy.
|
||||
Cloudflare was created by people who worked on that project. US DHS showed interest to this project.
|
||||
|
||||
|
@ -81,13 +81,17 @@ Cloudflare is not convenient for many visitors of your site.
|
|||
You will lose visitors when you choose Cloudflare.
|
||||
Many people who helped writing this file even blocked by Cloudflare.
|
||||
|
||||
Did you know that you can lose visitors because your site doesn't load in a few seconds?
|
||||
Did you know that you can lose visitors because your site [doesn't load in a few seconds](https://www.hostingmanual.net/3-seconds-how-website-speed-impacts-visitors-sales/)?
|
||||
|
||||
Cloudflare often makes visitors wait for more than few seconds.
|
||||
Many visitors will just leave your site when they see this.
|
||||
|
||||
![](https://codeberg.org/crimeflare/cloudflare-tor/media/branch/master/image/onemorestep.jpg)
|
||||
|
||||
No one wants to click multiple images just to read your website.
|
||||
|
||||
Here is an [example video](../subfiles/cloudflare-video-01.md) of CloudFlare blocking user who is using privacy add-ons.
|
||||
|
||||
|
||||
### Other problems
|
||||
|
||||
|
|
|
@ -7,39 +7,54 @@
|
|||
|
||||
|
||||
## Self-hosting
|
||||
Self-hosting often works great, but it requires some effort to setup. It is
|
||||
more aimed at technical people.
|
||||
Self-hosting often works great, but it requires some effort to setup.
|
||||
It is more aimed at technical people.
|
||||
|
||||
We might create a guide for some self-hosting basics which don't require Cloudflare.
|
||||
[IPFS](https://ipfs.io/) may be worth consideration if performance is the main concern.
|
||||
|
||||
`Apache` is vulnerable to various low-bandwidth attacks. Use other server software such as [Caddy](https://caddyserver.com/), [lighttpd](https://www.lighttpd.net/) or [nginx](https://nginx.org/).
|
||||
|
||||
|
||||
## Best way to protect your server from DDoS
|
||||
- Avoid any third-party service that _can intercept_ HTTP traffic (like Cloudflare)
|
||||
- Install WAF on your loadbalancer.
|
||||
- Even simple [ModSecurity](https://www.modsecurity.org/) can save you.
|
||||
- Add rate-limit to your nftable(firewall) and server software.
|
||||
- Just drop the excessive connection.
|
||||
|
||||
|
||||
|
||||
## Alternatives
|
||||
| Alternative | Drawback | Price | Link |
|
||||
| ----------------- | --------------------------------- | ------ | ---- |
|
||||
| Akamai | can be used to block Tor | ? | https://akamai.net/ |
|
||||
| BunnyCDN | ? | $0.01+ | https://bunnycdn.com/ |
|
||||
| Codeberg pages | no custom domain support; tor hostility | Free | https://pages.codeberg.org/ |
|
||||
| [eQualitie](https://equalit.ie/) | not gratis | gratis during COVID19 | https://equalit.ie/ |
|
||||
| Gitee pages | must understand Chinese | Free | https://gitee.com/help/articles/4136 |
|
||||
| Github pages | uses Microsoft servers | Free | https://pages.github.com/ (WARNING: Tor/VPN users will get their [account blocked automatically](https://github.com/crimeflare/cloudflare-tor) by Github) |
|
||||
| Level 3 | ? | Enterprise | https://www.centurylink.com/ |
|
||||
| PerimeterX | not gratis | ? | - |
|
||||
| [sucuri](https://sucuri.net) | not gratis; tor hostility at ~3.483% | $200+ | https://sucuri.net/|
|
||||
| Sharktech DDoS Solutions | ? | ? | https://sharktech.net/ |
|
||||
| Surge.sh | uses custom servers | Free | https://surge.sh/ |
|
||||
| Voxility | ? | ? | https://www.voxility.com/ |
|
||||
| [eQualitie](https://equalit.ie/) | not gratis | gratis during COVID19 | https://equalit.ie/ |
|
||||
| neoCities | static pages | Free | https://neocities.org/ |
|
||||
| sucuri | not gratis; tor hostility at ~3.483% | $200+ | https://sucuri.net/|
|
||||
|
||||
## Not researched yet
|
||||
### CDNJS
|
||||
CDNJS is sponsored by Cloudflare. It might use it in the background.
|
||||
`CDNJS` is sponsored by Cloudflare. It might use it in the background.
|
||||
|
||||
## Why X is not included
|
||||
| X | Reason |
|
||||
| ------- | ------ |
|
||||
| Cloudflare Argo | Uses Cloudflare. |
|
||||
| Gitlab pages | GitLab is now Cloudflared |
|
||||
| Imperva | Uses Cloudflare. |
|
||||
| jsDelivr | Uses Cloudflare, see their [network page](https://www.jsdelivr.com/network) |
|
||||
| Netlify | Uses Amazon AWS which is also a content delivery network. It would be hypocritical to include it. |
|
||||
| Siteground | Tor-hostile people. |
|
||||
| jsDelivr | Uses Cloudflare, see their [network page](https://www.jsdelivr.com/network) |
|
||||
|
||||
## History
|
||||
Sucuri and eQualitie have a history of CloudFlare patronage, but no longer.
|
||||
|
||||
|
||||
[//]: # ( go.impv is CF. | [Imperva](https://www.imperva.com) | not gratis; tor hostility at ~3.411% | ? | https://www.imperva.com |)
|
||||
|
|
|
@ -0,0 +1 @@
|
|||
<iframe width="480" height="390" src="https://codeberg.org/crimeflare/cloudflare-tor/raw/branch/master/image/cloudflare_withprivaon.mp4" frameborder="0" allowfullscreen></iframe>
|
Loading…
Reference in New Issue