[tor-bugs] #24351 [Applications/Tor Browser]: Block Global Active Adversary Cloudflare

Tor Bug Tracker & Wiki blackhole at torproject.org
Mon Aug 5 08:01:29 UTC 2019


#24351: Block Global Active Adversary Cloudflare
-------------------------------------------------+-------------------------
 Reporter:  nullius                              |          Owner:
                                                 |  cypherpunks
     Type:  enhancement                          |         Status:
                                                 |  assigned
 Priority:  High                                 |      Milestone:
Component:  Applications/Tor Browser             |        Version:
 Severity:  Major                                |     Resolution:
 Keywords:  security, privacy, anonymity, mitm,  |  Actual Points:
  cloudflare                                     |
Parent ID:  #18361                               |         Points:  1000
 Reviewer:                                       |        Sponsor:
-------------------------------------------------+-------------------------

Comment (by cypherpunks):

 @cyp121

 > the ipranges are public

 You linked to Cloudflare.com's data. Unfortunately their data is
 imcomplete.
 Here is the all ranges owned by the corporation. Better use it.

 https://codeberg.org/crimeflare/cloudflare-
 tor/src/branch/master/cloudflare_inc

 I already blocked them on my gateway server and I have 0 problem.

 > not only cloudflare is the problem
 > But no all CDN are in MitM position.

 I agree, but the Cloudflare is the biggest and worst.
 Unlike normal CDNs which serves only "static" files, CF is a full reverse
 proxy
 which serving dynamic contents.

 > cloud logo with a little metallic "∩"

 With orange or red color, I think.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/24351#comment:122>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list