Comment on Cloudflare blocks largest recorded DDoS attack peaking at 3.8Tbps
subtext@lemmy.world 1 month ago
Direct from the Cloudflare Blog
I find their write ups to be fascinating.
Comment on Cloudflare blocks largest recorded DDoS attack peaking at 3.8Tbps
subtext@lemmy.world 1 month ago
Direct from the Cloudflare Blog
I find their write ups to be fascinating.
conciselyverbose@sh.itjust.works 1 month ago
They have me in a weird spot, because I fundamentally don’t really like the sheer volume of information they are MITMing at all times, and don’t really like the idea of letting them do so for my small site.
But their decisions with respect to security threats pretty consistently seem well measured and as minimally invasive as they can be (eg they have intervened and rewritten content as a result of a supply chain attack, but were very transparent that it was desperate measures, that they didn’t really want to do it, and only did it by default for the free users that were most likely not to know enough to enable it themselves). They’ve also pushed back against stuff like piracy shield trying to turn them into outright surveillance for private companies.
andrew_bidlaw@sh.itjust.works 1 month ago
Their business model and size obligates them to walk carefully - they want users and clients to forget or not know they even exist and have such a leverage over them - that really helps them selling their products. I think they have top of the shelf specialists, hardware, etc and that naturally upholds their frightening monopoly. Piracy shield goes against them masquarading as invisible non-actors and puts a lot of unpaid responsibility on them.
conciselyverbose@sh.itjust.works 1 month ago
I get all that, and that’s why I feel weird about it.
Some of the stuff they do only works well with scale, though. And I definitely think at least some other leadership groups would abuse their market position assuming that their critical mass would be very difficult to displace. If they had just agreed to piracy shield, do you really think corporate customers would be scared off?
If I was doing actual stuff state level actors care about, I might still assume they’re not “safe”, but as a normal person? The fact that pirates can use their services reasonably safely and reasonably effectively definitely gives me a level of confidence that they’re unlikely to use their position in a way that harms me, maliciously or recklessly. I have a VPS as well and will eventually use that as a tunnel instead, so it’s actually end to end encrypted and I control the keys, but their consistent pattern of behavior doesn’t make me feel that much urgency about it.
andrew_bidlaw@sh.itjust.works 1 month ago
Yep, and I don’t disagree with you. We just somehow forgot about what bad, not shitty capitalists are. And that we can not trust them, but can somehow rely on their consistency.
‘We’d look into your shit as it passes by’ is a powerful statement that’d hurt their profits a lot, especially with corporates. That’s why MS’s Copilot is a risky gamble even with their leverage. They don’t want it at all, and these customers overshadow any of us easily.
Their scale is also why they won’t give a damn unless you violate something serious or really piss some nintendo. Small clients, millions of them, aren’t overseen by people, just ‘bots’ that can flag you for a personal review if you leave the margins and patterns of their average userbase, or if they have someone’s takedown demand. As we can’t dismantle it just now, it’s cool we can use it to further some anticap\anticenzorship goals.
lone_faerie@lemmy.blahaj.zone 1 month ago
They lost me when they refused to do anything about Kiwi Farms. Protecting privacy is one thing, facilitating hate crimes is another.
Kbobabob@lemmy.world 1 month ago
What do you mean?
blog.cloudflare.com/kiwifarms-blocked/