Patching the Internet in Realtime: Fixing the Current WordPress Brute Force Attack

There is currently a significant attack being launched at a large number of WordPress blogs across the Internet. The attacker is brute force attacking the WordPress administrative portals, using the username “admin” and trying thousands of passwords. It appears a botnet is being used to launch the attack and more than tens of thousands of More Info »

CloudFlare Heading to Parallels Summit 2013

CloudFlare is heading to Parallels Summit in Las Vegas on Monday, February 4th to Wednesday, February 6th. We look forward to meeting and reconnecting with service providers and providing complimentary limo rides between the airport and the Caesars Palace hotel. We recently launched a partnership with Parallels. Any Parallels service provider can increase revenue, while More Info »

App: GamaSec Web Application Security and Vulnerability Scanning

We enjoy working with companies who share a focus on website security. When GamaSec, an online web vulnerability-assessment service, inquired about ways to integrate, we were excited to make their scanning service available as a CloudFlare app, where any CloudFlare customer can easily turn on GamaSec. GamaSec’s cloud-based security scan serves as an early-warning system More Info »

Pushing Nginx to its limit with Lua

At CloudFlare, Nginx is at the core of what we do. It is part of the underlying foundation of our reverse proxy service. In addition to the built-in Nginx functionalities, we use an array of custom C modules that are specific to our infrastructure including load balancing, monitoring, and caching. Recently, we’ve been adding more More Info »