PEOPLE.md

INSTRUCTION.md
2021-03-19 08:39:11 +01:00 · 2021-03-19 06:20:48 +01:00 · 2021-03-19 02:28:07 +01:00
2 changed files with 37 additions and 10 deletions
--- a/INSTRUCTION.md
+++ b/INSTRUCTION.md
@ -236,17 +236,18 @@ Your contribution will be pushed to git automatically within a week.
 </summary>


-This procedure will give you a stop_cloudflare fork with a privacy-respecting configuration to do pushes with SSH over Tor using `git.fuwafuwa.moe`.
+This procedure will give you a stop_cloudflare fork with a privacy-respecting configuration to do pushes with SSH over Tor using `codeberg.org`.
 Below procedure is designed for _Linux_.
 The first step covers Windows too, but these instructions probably
 need more adaptations for Windows and other platforms.

+**WARNING: Codeberg is blocking some non-temporary email providers**

 - Linux: `aptitude install git tor ssh`
 - Windows: Download `PortableGit` from [Github](https://github.com/git-for-windows/) & run `git-bash.exe`

 1. Install Git, SSH(Not Windows), and Tor (if you haven't already)
-1. Create a `git.fuwafuwa.moe` account (username "snowden" will be used for this example)
+1. Create a `codeberg.org` account (username "snowden" will be used for this example)
 1. Create an SSH key pair `$ ssh-keygen -t rsa -N '' -C 'snowden at git' -f "$HOME"/.ssh/id_rsa_mrsnowden`
 1. Edit `$HOME/.ssh/config`:
 ```
@ -260,7 +261,7 @@ need more adaptations for Windows and other platforms.

 1. copy `"$HOME"/.ssh/id_rsa_mrsnowden.pub` to clipboard
 1. git.fuwafuwa.moe > settings > SSH/GPG Keys > add key (paste from clipboard)
-1. $ `firefox https://git.fuwafuwa.moe/you/stop_cloudflare`
+1. $ `firefox https://codeberg.org/crimeflare/cloudflare-tor`
 1. fork it (top right corner)
 1. go to the directory you want the project to be rooted in (hereafter we'll call it `$project_root`).
 1. anonymously download your fork: $ `git clone git@mrsnowden:you/stop_cloudflare.git`
@ -273,7 +274,7 @@ need more adaptations for Windows and other platforms.
        url = git@mrsnowden:snowden/stop_cloudflare.git
     	fetch = +refs/heads/*:refs/remotes/origin/*
 [remote "upstream"]
-        url = git@mrsnowden:you/stop_cloudflare.git
+        url = git@mrsnowden:crimeflare/cloudflare-tor.git
     	fetch = +refs/heads/*:refs/remotes/origin/*
 [branch "master"]
 	remote = origin
@ -286,7 +287,7 @@ need more adaptations for Windows and other platforms.
 1. if yes: `$ git add . -u`
 1. $ `git commit -m 'description of first change'`
 1. $ `git push origin master`
-1. $ `firefox https://git.fuwafuwa.moe/you/stop_cloudflare`
+1. $ `firefox https://codeberg.org/crimeflare/cloudflare-tor`
 1. make a new pull request

 &nbsp;
@ -355,11 +356,8 @@ If `the owner` moved away from `cloudflare` **completely**, you are welcome to a
 3. Click `test` for detailed scan.

 4. If you got `--- Finish ---`, the domain _might_ stopped using Cloudflare.
-
-We'll _investigate_ and remove it _if_ it is true.<br>
-You may prioritize your review request by contacting us if you are in a hurry.
-
-5. [Optional] Wait some days and scan again to see whether the domain is removed.
+  - The domain will be automatically removed.
+  - If the domain starts using Cloudflare again, it will be added again.


 `Only a few Cloudflare user leave Cloudflare. False positive is uncommon.`
--- a/PEOPLE.md
+++ b/PEOPLE.md
@ -443,6 +443,35 @@ Correcting the wrongs of CloudFlare entails some unfair discrimination against c



+- Today the CloudFlare gods have smiled upon me, and decided that every website I have to complete a captcha. Wouldn't be as bad if hCaptcha had any quality control. Say what you want about Google, but reCaptch at least worked. Isn't having gatekeepers to the internet great? ([jamescun](https://twitter.com/jamescun/status/1371918897839017991))
+- Oh, that's changed. You used to be able to paste in the URL from any codepen editor page, but now Cloudflare gets in the way. Curiously, my Safari just hit the same Cloudflare page, but let me through after the CAPTCHA - never had that before (and I tried Safari before Flow). ([_piers_](https://twitter.com/_Piers_/status/1371492006258688000))
+- The error message is stupid. Cloudflare is on high alert, a majority of the users can't touch the site. ([silvea12](https://twitter.com/Silvea12/status/1372625689417945088))
+- Else an SSL Handshake Failure or Error 525 will haunt you 😅 ([sach_8in](https://twitter.com/Sach_8in/status/1372562414646951939))
+- Hey I am getting a 520 cloudflare error on your website. Are you undergoing maintenance or something? ([robinhyll](https://twitter.com/robinhyll/status/1372548633371967491))
+- I think Cloudflare is great but its MITM approach is not very privacy-friendly, there are more privacy-friendly ways (for us) to provide security and reliability to our customers and users. We're probably a special case since we're very privacy-focused and a bit overzealous. ([ardewes](https://twitter.com/ardewes/status/1372149329092345858))
+- I started using Cloudflare in 2015 because they offered free TLS certificates (back then a simple cert cost 100's of € per year), but obviated that need. Also, privacy is our main concern at so using a MITM service like became inacceptable. ([ardewes](https://twitter.com/ardewes/status/1372130942047895555))
+- The FFN RSS/Atom feeds seem to be hidden behind Cloudflare CAPTCHA. This makes it ... rather impossible ... for my RSS feed reader to read the feeds. Can you exclude the /atom/ URLs? ([bob_vul](https://twitter.com/Bob_Vul/status/1372326154154110978))
+- Hi guys, could you please contact me as i have been receiving alot of cloudflare captcha’s and it is preventing me from using streamlabs obs and playing pc games. It is really annoying given i am paying a hefty sum for an issue like this. Please contact me. ([danialku](https://twitter.com/danialku/status/1370790115908317187))
+- hey guys, i have an issue where whenever i log into streamlabs obs i get a pop out from cloudflare. after completing the captcha and logging in, i got signed out almost immediately. i redownloaded and the issue is still present, however when i use vpn, i could log in. ([danialku](https://twitter.com/danialku/status/1370756451455565827))
+- At some point I have actually attempted to put a fair amount of my own efforts into studying this sort of thing, and often I found that the choice of implementation CAPTCHA systems -- where often used in practice -- was largely avoidable but not completely. ([_rvklein_](https://twitter.com/_rvklein_/status/1370642884572106752))
+- Eyesight is a problem with captcha. Even wearing glasses, I usually take a few goes. ([rmf719630](https://twitter.com/rmf719630/status/1369981269552037890))
+- Failed captcha 4 times in a row. Now blocked from logging in. wtaf ([alanb](https://twitter.com/alanb/status/1369247947716767749))
+- I love that ditched Google Captcha because: data and privacy things... And I hate that ditched Google Captcha because: their alternative it horrible, annoying and probably the worst they ever did to the internet! ([nloenne](https://twitter.com/nloenne/status/1366142509232099333))
+- fuck you for suspicious internet, fuck you for the captcha. ([selvicekun](https://twitter.com/selvicekun/status/1365274076940394500))
+- De hecho es como te proteges en cloudflare, prohibes visitas de ciertos países (normalmente rusia y china pero depende de donde llegue el ataque), y pones captcha para otros. También puedes hacer throttling. Tendría que ver más el detalle. ([ddshore](https://twitter.com/ddshore/status/1365000938205765639))
+- De hecho es como te proteges en cloudflare, prohibes visitas de ciertos países (normalmente rusia y china pero depende de donde llegue el ataque), y pones captcha para otros. También puedes hacer throttling. Digo, la verdad estoy hablando sin saber porque no he visto el sitio. ([ddshore](https://twitter.com/ddshore/status/1365000438433554432))
+- 403 error from Cloudflare when trying to buy shopping on your app (android)... Can you get your tech guys to take a look? ([gardnose](https://twitter.com/gardnose/status/1372452712890126337))
+- Getting a cloudflare error when trying to access your site. Can you confirm there are tech issues and if so, is someone working on it? ([carambasson](https://twitter.com/Carambasson/status/1372300397583405056))
+- I saw the classic Cloudflare error page. I was like what's going on. 👀 Happy that PH is back. ❤️ ([thisissubhendu](https://twitter.com/ThisIsSubhendu/status/1372084189437161472))
+- Doesn't work from RU: Error 1020 Cloudflare Ray ID: 630fe3f3dac58498 • 2021-03-16 18:02:04 UTC Access denied ([dderss](https://twitter.com/DDERSS/status/1371885117858320394))
+- Something up with your carpark booking site? Login takes a couple minutes to process. Forgot password spits out a CloudFlare error. And when I managed to login and get to the details page for parking I see an error under the form. It's impossible to book. ([acoopernz](https://twitter.com/ACooperNZ/status/1371628930650664962))
+- I'm a user: Getting a 502 bad gateway error from your host trying to get my list sent to - rayid 62fffd13a29d9d89 so you can troubleshoot ([docsmooth](https://twitter.com/docsmooth/status/1371185775304380421))
+- hey guys, I can’t visit your website. I keep getting an error 1020 access denied notification with “This website is using a security service to protect itself from online attacks” and something about cloudflare. :’( ([falleri](https://twitter.com/falleri/status/1371041706724970502))
+- Same thing happened to me. Had to uninstall. Went to the website to redownload and got a Cloudflare error page. Something's up ([drewcpu](https://twitter.com/DrewCPU/status/1370994317876203520))
+- Using decentralized compute (ex Workers) to generate nonce can reduce compute times as cost. Nonce can be cached by SW. It is still unguessable for an attacker. A MITM attack could defeat this so hash based still useful. Or SW could rewrite CSP header at each load ? ([denistruffaut](https://twitter.com/DenisTRUFFAUT/status/1371704256311521281))
+- could always play true MITM with encrypted brower to proxy. and encrypted traffic to fast. But able to manipulate bytes in the middle as they please. I can't tell for sure if it's CloudFlare, but just based on cookies prefixed with cf. that's my guess. ([wlaurance](https://twitter.com/wlaurance/status/1368705326623694850))
+- Its amazing how E2E ssl adds the remote IP in the HTTP headers. Thats not how E2E works, this is called hop-by-hop. Interesting they are also CA and DNS over HTTPS provider. What a nice position to build a MiTM for any website... and I mean.. ANY website. ([idafanatic](https://twitter.com/idafanatic/status/1353102502279979016))
+- Cool, yeah I’d like to avoid using their SSL certificates, just for the sake of removing one central point of failure and potential mitm attack 😁 ([eordano](https://twitter.com/eordano/status/1350982516535140355))
 - the error message is from Cloudflare, so I guess it is on my end ([sql_williamd](https://twitter.com/sql_williamd/status/1347572805290913792))
 - Unable to open the Deposit page since morning. Page times out showing a Cloudflare error page. ([dhimant](https://twitter.com/dhimant/status/1347436681952075784))
 - From UK, got through to Cloudflare, asked to do the CAPTCHA, but then went to a page to say something went wrong... ([iamadamau](https://twitter.com/IamAdaMau/status/1347234629401587713))
Author	SHA1	Message	Date
Yana Chen	329ceac1af	PEOPLE.md	2021-03-19 08:39:11 +01:00
Stanley Chan	43ca7fd580	PEOPLE.md	2021-03-19 06:20:48 +01:00
Lakshman Manoharan	e2b7002023	INSTRUCTION.md	2021-03-19 02:28:07 +01:00