This blog not affected by the memory-leak of Cloudflare ~ Teusink

Monday, February 27, 2017

This blog not affected by the memory-leak of Cloudflare

By Joram Teusink On Monday, February 27, 2017 No comments

In the post 'Implementing https on Blogger using Cloudflare' I describe how I utilize Cloudflare services to protect this blog. Unfortunately, we all noticed that Cloudflare has suffered from a tremendous memory-leak which was announced Friday, February the 24th.

This leak (a bit referred to as #cloudbleed) is extensively covered in the following posts.

Cloudflare - Incident report on memory leak caused by Cloudflare parser bug
https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/
ARS Techinca - Serious Cloudflare bug exposed a potpourri of secret customer data
https://arstechnica.com/security/2017/02/serious-cloudflare-bug-exposed-a-potpourri-of-secret-customer-data/
Chromium Bug Tracker - Cloudflare Reverse Proxies are Dumping Uninitialized Memory
https://bugs.chromium.org/p/project-zero/issues/detail?id=1139
Pirate (GitHub) - List of Sites possibly affected by Cloudflare's #Cloudbleed HTTPS Traffic Leak
https://github.com/pirate/sites-using-cloudflare

On February the 24th I also got confirmation that this blog has not been affected by the memory leak in the html-parser of Cloudflare.

So, no worries in that regard concerning this blog.

Joram Teusink

Who I am as a professional is best described as me being a Sensible Security Officer. The questions “Why?” and “Why not?” are probably my most asked questions and with that I like to challenge standing ideas and believes on everything that holds my interests. But why sensible? That is because I like to move further than anything that is considered common. And by doing so I want to add real value to business with sensible controls on security and privacy that actually do work.

And not to be forgotten, I am a geek, technologist and futurist by heart and I like to inspire people with telling my vision of what has yet to come. So, occasionally you just might find a story about that also. And with sharing my insights I aim to inspire and create meaningful value for my readers, colleagues, friends and family with new ideas, concepts and easy how-to guides.

Teusink

Monday, February 27, 2017

This blog not affected by the memory-leak of Cloudflare

0 comments:

Post a Comment

Follow Me

About Me

Tags

Archive

Building a set of Guidelines for Security and Privacy