Turning Cloudflare’s threat indicators into real-time WAF rules
…The primary advantage of an "always-on" model is the elimination of the traditional "log vs. block" trade-off: visibility in log mode, or protection in block mode. That’s because when…
Search
Rearchitecting the Workflows control plane for the agentic era
…When we originally built Workflows , our durable execution engine for multi-step applications, it was designed for a world in which workflows were triggered by human actions, like a user signing up…
Introducing the Cloudflare Onion Service
…switch the IP address in the scenario above with an .onion address. As long as the certificate is valid, the .onion address itself need not be manually entered by a user or…
When "idle" isn't idle: how a Linux kernel optimization became a QUIC bug
…However, QUIC, which runs in the user space, doesn't have TCP's kernel-level CA_EVENT_TX_START callback. Instead, the quiche implementation checks for the idle condition inside on_packet…
Cloudflare DDoS threat report for 2022 Q4
…While application-layer attacks target the application (Layer 7 of the OSI model ) running the service that end users are trying to access (HTTP/S in our case), network-layer DDoS attacks…
DDoS Attack Trends for Q4 2021
…Network-layer DDoS attacks While application-layer attacks target the application (Layer 7 of the OSI model ) running the service that end users are trying to access, network-layer attacks aim to…
To show you the most relevant results, we’ve omitted some entries very similar to those already shown. Repeat the search with the omitted results included.