Reminds me of the Crowdstrike incident last year.
All my services are fine. I self host. Yes I’m quite pedantic about it. :D
I also self host, but I can’t claim to have better uptime than Cloudflare
Weird. Didn’t notice because Cloudflare blocks my real user traffic because I have the audacity to use a VPN and Firefox with privacy extensions that block like maybe two of their arsenal of fingerprinting tools.
It reminds me more of the AWS outage last month.
It’s probably not half of the Internet, but the fact that it’s so many very visible sites should be a warning sign to everyone that the Internet is nowadays too reliant on a few points of failure (which can cause other problems, e.g. censorship).
From a security perspective when you consider this, along with our reliance on mobile phones, POS systems, digital payment processors, iot devices, cell phone providers, etc etc.
Sooner or later someone with ill intent is going to savagely fist fuck the whole fucking ecosystem to death and take a shit on the flaming wreckage.
Law enforcement neither understands nor gives a fuck about tech for the most part, unless you’re dealing with high end espionage type shit. Good luck getting officers dunning and Krueger to take action on anything suspicious when they think their ability to use an iPhone means they’re the greatest thing to happen to tech since the microprocessor.
The makers of consumer tech products could give a fuck about security. Wireless providers similarly could not give a squirt of fucking piss about security as long as you’re paying your monthly bills and they can harvest data. Politicians only care insofar as they’re able to use tech to push their moral bullshit, control and police peoples’ actions. It goes on and on and on and on.
We are reliant on all manner of tech products, both hardware and software, to participate in modern life, and yet the political apparatus treats it all like it’s disposable, as if it’s 1996 and it doesn’t matter if all of this goes to shit.
We are a naked, drunk 16 year old girl at a frat house with a sign that says “fuck me, I’m wasted” around our necks and we’re pretending like there are no consequences to this, or worse yet that nothing bad will happen.
The Spider Jerusalem of the tech world. But I want to slap some of my colleagues. The number of times I caught some making everybody administrator so they don’t have to deal with security is too high.
Does spider Jerusalem eat Palestine flies?
Cloudflare is in an interesting space. They are a service provider (ddos protection, scalable edge caching, SSL termination, etc) that allows the highly centralized internet to function. However they aren’t a gatekeeper at all. You only need cloudflare if you are in the top 5% of internet websites by volume. So when cloudflare has a problem, Lemmy isn’t affected, but Reddit is. My blog isn’t affected, but someone like https://blog.ipspace.net/ is affected.
My personal browsing habbits meant I didn’t even realize there was a cloudflare problem until I read an article about it on Lemmy. Anyway, just a tangent, but as a network engineer I’m sure i’ll be interested in the RCA.
Anyone have a decent guide on migrating from CF tunnels over to a proper reverse proxy? I hate networking 😓
Check out traefik, not sure how easy or the process to switch but configuring it is relatively easy
I’m not sure this is what I’m looking for, I appreciate it though!
I’m hoping for something where the only thing I need to have on someone elses system is DNS entries, ideally.
I know I can use duckdns to automatically update my dns entries when my public IP expires (residential conn), and I know how to handle setting up DNS entries themselves(I hate dns 😓) but I’m just not sure how to configure nginx or apache. As it stands the only “get this thing on the web” tool I’m actually proficient with is streamlit, which I can’t use with my selfhosted tools.
That’s how I use it, cloudflare handles my DNS and traefik does all the routing, I’d have to look again (been a year since I set it up) but it dynamically updates with my IP
Oh amazing, thank you, I’ll take a look at the docs this afternoon 😊
There’s some malicious satisfaction watching centralized internet burning in dumpster fire while your self hosted stuff is still up
Except many of us use cloudflare tunnels to reach our selfhosted kit from the internet because we’re behind CGNATs…
Isn’t cloudflare a pretty common part of remotely accessing your server? I don’t use it but I’ve seen lots of people talk about it and recommend using them.
yes. it also prevents attacks. it’s basically a necessity these days.
if you host your own stuff and get any traffic you’ll get DDoSed by bots. cloudflare prevents this by detaching your DNS from your IP and distributing requests.
just port forwarding on your home network these days… and you’ll get dozens of attacks per hour.
the internet is not ‘nice’ anymore. services like cloudflare are a necessity for any active services beyond personal use. long gone are the days you could host a web server from your bedroom.
Maybe you guys are hosting more than me but I’ve got a few ports forwarded and don’t see any unusual activity. I guess I’m just lucky.
For me what triggered getting a lot of malicious login attempts in the logs was pointing a dns record directly at my ip
Ah, yeah I don’t do that. Haven’t had much of a reason to so far. Only have a few minor convenience type services opened up
I haven’t exposed anything to internet and self hosted headscale instance. I’m not behind CGNAT so it was quite easy.
I do use it myself (free tier only) but it’s out of ease and convenience. I’m ready to abandon it but I like the security it brings. My stuff is just personal garbage with no strict uptime requirement - if I lose public access I still have Tailscale and a VPN to my router as backup.
So, it’s a deal with the devil for sure, but it’s one I wore protection for when signing.
hell yea
It’s so funny :P just months ago one of my most used forums adopted cloudflare and many asked “Are you sure?”. Well…
Canva is affected.
Lemmy.world was affected too, how come? ಠ_ಠ
Because .world definitely uses Cloudflare? https://checkforcloudflare.selesti.com/?q=lemmy.world
ooo thats a cool website. Just for the funnies I just threw the top 35 (as shown by fediverse observer) into it.
Lemmy Filtered
lemmy.world(Active Users: 14512): Cloudflare? Yes(dns,proxy,cname)
sh.itjust.works(Active Users: 2509): Cloudflare? Yes(dns,proxy,cname)
lemmy.ml(Active Users: 2087): Cloudflare? No
lemmy.zip(Active Users: 1704): Cloudflare? Yes(dns,proxy,cname)
lemmy.dbzer0.com(Active Users: 1444): Cloudflare? No
lemmy.ca(Active Users: 1381): Cloudflare? Yes(dns,proxy,cname)
lemmygrad.ml(Active Users: 972): Cloudflare? No
lemmy.blahaj.zone(Active Users: 956): Cloudflare? No
programming.dev(Active Users: 929): Cloudflare? Yes(dns,proxy,cname)
discuss.tchncs.de(Active Users: 778): Cloudflare? No
sopuli.xyz(Active Users: 596): Cloudflare? No
slrpnk.net(Active Users: 371): Cloudflare? No
infosec.pub(Active Users: 331): Cloudflare? No
lemmy.today(Active Users: 314): Cloudflare? No
midwest.social(Active Users: 307): Cloudflare? No
reddthat.com(Active Users: 292): Cloudflare? Yes(dns,proxy,cname)
feddit.nl(Active Users: 290): Cloudflare? No
pawb.social(Active Users: 243): Cloudflare? Yes(dns,proxy,cname)
forum.guncadindex.com(Active Users: 234): Cloudflare? No
mander.xyz(Active Users: 194): Cloudflare? No
lemmings.world(Active Users: 177): Cloudflare? No
ani.social(Active Users: 173): Cloudflare? Yes(dns,proxy,cname)
feddit.it(Active Users: 158): Cloudflare? No
startrek.website(Active Users: 156): Cloudflare? No
feddit.dk(Active Users: 151): Cloudflare? Yes(dns,cname)
leminal.space(Active Users: 126): Cloudflare? Yes(dns,proxy,cname)
ttrpg.network(Active Users: 125): Cloudflare? No
szmer.info(Active Users: 116): Cloudflare? No
lemmy.eco.br(Active Users: 99): Cloudflare? Yes(dns,proxy,cname)
lemy.lol(Active Users: 97): Cloudflare? Yes(dns,cname)
awful.systems(Active Users: 90): Cloudflare? No
Fediverse as a whole
mastodon.social(Active Users: 255517): Cloudflare? No
pixelfed.social(Active Users: 61361): Cloudflare? Yes(dns,proxy,cname)
community.sketchucation.com(Active Users: 33551): Cloudflare? No
pawoo.net(Active Users: 17637): Cloudflare? No
lemmy.world(Active Users: 14505): Cloudflare? Yes(dns,proxy,cname)
mstdn.jp(Active Users: 12531): Cloudflare? Yes(dns,proxy,cname)
infosec.exchange(Active Users: 11773): Cloudflare? No
mstdn.social(Active Users: 11589): Cloudflare? No
mas.to(Active Users: 10344): Cloudflare? Yes(dns,proxy,cname)
planet.moe(Active Users: 9918): Cloudflare? Yes(dns,cname)
mastodon.online(Active Users: 8493): Cloudflare? No
phijkchu.com(Active Users: 8463): Cloudflare? Yes(cname)
fosstodon.org(Active Users: 8403): Cloudflare? No
hachyderm.io(Active Users: 8302): Cloudflare? No
mastodon.world(Active Users: 7941): Cloudflare? No
piaille.fr(Active Users: 7934): Cloudflare? No
fedibird.com(Active Users: 7840): Cloudflare? Yes(dns,cname)
social.vivaldi.net(Active Users: 6561): Cloudflare? Yes(dns,proxy,cname)
m.cmx.im(Active Users: 6109): Cloudflare? Yes(dns,proxy,cname)
micro.blog(Active Users: 6067): Cloudflare? No
pixelfed.uno(Active Users: 6027): Cloudflare? Yes(dns,cname)
troet.cafe(Active Users: 6016): Cloudflare? No
chaos.social(Active Users: 5995): Cloudflare? No
mastodon.uno(Active Users: 5554): Cloudflare? Yes(dns,cname)
st.fdel.moe(Active Users: 5136): Cloudflare? Yes(dns,proxy,cname)
mastodon.gamedev.place(Active Users: 4556): Cloudflare? No
techhub.social(Active Users: 4532): Cloudflare? Yes(dns,proxy,cname)
mastodon.art(Active Users: 3848): Cloudflare? No
pixelfed.de(Active Users: 3806): Cloudflare? No
social.tchncs.de(Active Users: 3556): Cloudflare? No
mastodon.nl(Active Users: 3537): Cloudflare? No
wxw.moe(Active Users: 3237): Cloudflare? Yes(dns,proxy,cname)
wxw.ooo(Active Users: 3237): Cloudflare? No
norden.social(Active Users: 3206): Cloudflare? No
the silver lining to this cloud. lol
Can’t say I noticed anything tbh
Lots of small sites were down. Including lemmy.zip
Lemmy works so let the world just burn down. oh also chatgpt does not work hurraayyy
Lemmy.zip apparently uses Cloudflare.
i feel bad for you
lemmy world was down apparently.
Yes and they keep doing this every other week it feels like.
I don’t know what’s gone wrong but they need to get real people making their code again (I’m assuming they have taken the leash off cursor in all their repos, because it feels like it!!!).
Seriously, please stop taking down the internet.
And second seriously we need a new alien age technology that can stop us having to route all of our traffic through one service.
Again?
The world’s richest man can’t even keep his own website up and accessible. But the guys hosting the fedi in their garage are just fine. Lol
Can I rent some space in your garage?
Lemmy.ca was down
tbf, the scales are slightly different
He should be able to afford a lot more redundancy than our garage hosters.
The scale makes it more embarrassing, not less.
I mean, isn’t that part of the point? Decentralization to smaller systems
Gonna be a fun day at work today
Use cloud services, they said. To prevent outages, they said.
@tux0r@feddit.org when cloudflare catch a cold, it’s half the web that is coughing…
and people called me crazy when i said it was a big fat SPOF…It’ll be fun, they said.
Your cat won’t die, they said.
“trust is” says marketing.
There are a lot of IT departments though that get to throw up their hands and say “can’t fix it, it’s a cloud issue!” and watch as management, who pushed for cloud in the first place, sucks it up because they don’t want to lose face for their decision.
(Yes I know some still get yelled at regardless and told to fix a 3rd party service)
(Yes I know some still get yelled at regardless and told to fix a 3rd party service)
Man I feel this. Once some drunk asshat hit a telephone pole and it killed the fiber line to a call center for the company I worked for. Hilariously the backup Internet was on the same pole… Additionally… It was a hemispherical call center meaning it served everyone in the western hemisphere.
Anyway… All internet was down for the call center for like 8 hours. So no calls were being answered. No orders being placed etc.
Being on the Helpdesk at the time…I took so many “our Internet is down” calls. Which after a couple hours it turned into “fix the internet or I’m calling your boss” lol
Which then turned into “fix the internet or I’m calling their boss”
From my pov it was hilarious.
Someone in upper management got fired for consolidating all the call centers. Then they moved to wireless Internet via cell towers as a backup.
But as we all know. That’s just fiber based at the tower. Lol
So yeah fun times of “go do someone else’s job”
Still to this day idk why it took so long… you’d think an sla would be in place. ¯\_(ツ)_/¯
