The chaps that keep the CloudFlare global network running do seem a bit busy than usual today. I asked if there were "more attacks than usual" and they replied "Yes" and rushed off to do something.
Which sites?
Yes, but SPDY does compression of headers and so the same cookie being sent should be compressed.
See: http://calendar.perfplanet.com/2013/spdy-domain-sharding/#co...
We'll blog about it later.
Similar lack of structure exists at CloudFlare.
You could use CloudFlare as a front end to take some of the load.
"Oh I get that this is the key fact, I put a smiley in there because I was fishing for a more exact number that is unlikely to be given" The honest truth is that I actually don't know how many servers we have because…
Hundreds of servers in 23 locations worldwide, each server running multiple instances of Nginx: http://blog.cloudflare.com/a-tour-inside-cloudflares-latest-... The key fact is that this type of scale is possible with…
We are entirely Linux not NetBSD and are not currently using Lua in the kernel at all. We did, however, sponsor some of Mike Pall's work on LuaJIT based on our particular workload:…
From the post: A recent example illustrates the power of this approach: Cloudflare's WAF (web application firewall) basically generates Lua code for the (highly non-linear) maze of firewall rules. An incoming attack…
It would be interesting to know if there are 'flagging rings' in the same way there are 'voting rings' and whether HN actively detects the former as it does the latter.
I'll poke around and have a look to see why. The Ray ID will be different each time; it's a debugging feature that identifies the request when something goes wrong. If this persists please contact support AT cloudflare…
What's the Ray ID?
I guess the OP thought HN would be interested in it. We (CloudFlare) didn't submit it; it's just one of many, many posts on our blog.
Can be SSL or not to the origin. Plus there's the Railgun option that also uses TLS.
Not a web host, but if you use CloudFlare with SSL in front of your host you get PFS: http://blog.cloudflare.com/staying-on-top-of-tls-attacks
http://blog.cloudflare.com/open-source-two-way-street
typerandom: if you have time I'd be interested in understanding the performance problems you reported on CF. My email is in my profile.
The chaps that keep the CloudFlare global network running do seem a bit busy than usual today. I asked if there were "more attacks than usual" and they replied "Yes" and rushed off to do something.
Which sites?
Yes, but SPDY does compression of headers and so the same cookie being sent should be compressed.
See: http://calendar.perfplanet.com/2013/spdy-domain-sharding/#co...
We'll blog about it later.
Similar lack of structure exists at CloudFlare.
You could use CloudFlare as a front end to take some of the load.
"Oh I get that this is the key fact, I put a smiley in there because I was fishing for a more exact number that is unlikely to be given" The honest truth is that I actually don't know how many servers we have because…
Hundreds of servers in 23 locations worldwide, each server running multiple instances of Nginx: http://blog.cloudflare.com/a-tour-inside-cloudflares-latest-... The key fact is that this type of scale is possible with…
We are entirely Linux not NetBSD and are not currently using Lua in the kernel at all. We did, however, sponsor some of Mike Pall's work on LuaJIT based on our particular workload:…
From the post: A recent example illustrates the power of this approach: Cloudflare's WAF (web application firewall) basically generates Lua code for the (highly non-linear) maze of firewall rules. An incoming attack…
It would be interesting to know if there are 'flagging rings' in the same way there are 'voting rings' and whether HN actively detects the former as it does the latter.
I'll poke around and have a look to see why. The Ray ID will be different each time; it's a debugging feature that identifies the request when something goes wrong. If this persists please contact support AT cloudflare…
What's the Ray ID?
I guess the OP thought HN would be interested in it. We (CloudFlare) didn't submit it; it's just one of many, many posts on our blog.
Can be SSL or not to the origin. Plus there's the Railgun option that also uses TLS.
Not a web host, but if you use CloudFlare with SSL in front of your host you get PFS: http://blog.cloudflare.com/staying-on-top-of-tls-attacks
http://blog.cloudflare.com/open-source-two-way-street
typerandom: if you have time I'd be interested in understanding the performance problems you reported on CF. My email is in my profile.