diff --git a/PEOPLE.md b/PEOPLE.md index 1114a565b..32cf415ed 100644 --- a/PEOPLE.md +++ b/PEOPLE.md @@ -61,6 +61,8 @@ Disqualify: "[Ditch Cloudflare - Broken HTTPS/MiTM](https://greysec.net/showthread.php?tid=1256)" by [NO-OP](https://greysec.net/member.php?action=profile&uid=47) +"[Cloudflare as a Security Risk - Support - Whonix Forum](http://forums.whonix.org/t/cloudflare-as-a-security-risk/2162)" by [entr0py](https://forums.whonix.org/u/entr0py) + "[How likely is it that CloudFlare is an NSA operation?](https://www.quora.com/How-likely-is-it-that-CloudFlare-is-an-NSA-operation/answer/Hamid-Sarfraz)" by quora "[cloudflare 是如何转发 HTTPS 流量的?](https://www.v2ex.com/t/406759)" by [feast](https://www.v2ex.com/member/feast) diff --git a/README.md b/README.md index db70e57d1..48acb0f07 100644 --- a/README.md +++ b/README.md @@ -56,7 +56,7 @@ Also see [Frequently Asked Questions](faq.md). * Add WTF-Cloudflare news to [NEWS.md](NEWS.md) * Search something on [Searxes Tor](http://searxes.nmqnkngye4ct7bgss4bmv5ca3wpa55yugvxen5kz2bbq67lwy6ps54yd.onion/) or [clearnet](https://searxes.danwin1210.me/) (this will help collecting Searxes' "MITM domains") * Take a look at [add-on code](ismitmlink/) (how to use "MITM test API") -* Subscribe to an ![](image/feed.png) RSS feed: "[The Great Cloudwall News](https://searxes.danwin1210.me/collab/open/data/crimeflare.rss)" or follow ![](image/mstdn.jpg) [crimeflare@ieji.de](https://ieji.de/@crimeflare) +* Subscribe to ![](image/feed.png) RSS feed: "[The Great Cloudwall News](https://ieji.de/users/crimeflare.rss)" or follow ![](image/mstdn.jpg) [crimeflare@ieji.de](https://ieji.de/@crimeflare) ![WTF](image/wtfcf.jpg) diff --git a/cloudflare_owned_NS.txt b/cloudflare_owned_NS.txt index 6b6c19599..a52412bed 100644 --- a/cloudflare_owned_NS.txt +++ b/cloudflare_owned_NS.txt @@ -60,4 +60,9 @@ seth.ns.cloudflare.com sofia.ns.cloudflare.com terin.ns.cloudflare.com theo.ns.cloudflare.com -zoe.ns.cloudflare.com \ No newline at end of file +zoe.ns.cloudflare.com +kevin.ns.cloudflare.com +megan.ns.cloudflare.com +peyton.ns.cloudflare.com +tegan.ns.cloudflare.com +aida.ns.cloudflare.com \ No newline at end of file diff --git a/image/matthew_prince.jpg b/image/matthew_prince.jpg index 5bd8e3c2d..0e463e192 100644 Binary files a/image/matthew_prince.jpg and b/image/matthew_prince.jpg differ diff --git a/what-to-do.md b/what-to-do.md index 9c20b7375..907bafd2b 100644 --- a/what-to-do.md +++ b/what-to-do.md @@ -134,6 +134,8 @@ Let's talk about _other software's privacy_... - PaleMoon developer [loves Cloudflare](https://github.com/mozilla-mobile/focus-android/issues/1743#issuecomment-345993097). +- Waterfox actively using [Cloudflare on their servers](https://www.digwebinterface.com/?hostnames=www.waterfoxproject.org&type=A&ns=resolver&useresolver=8.8.4.4&nameservers=) and their software have [severe "phones home" problem](https://spyware.neocities.org/articles/waterfox.html). + - Chrome is a [spyware](https://www.gnu.org/proprietary/malware-google.en.html). - Brave Browser [whitelist Facebook/Twitter trackers](https://www.bleepingcomputer.com/news/security/facebook-twitter-trackers-whitelisted-by-brave-browser/). @@ -167,8 +169,16 @@ Let's talk about _other software's privacy_... ![](image/firefoxdns.jpg) - If you would like to use non-ISP DNS, consider using [OpenNIC Tier2 DNS service](https://wiki.opennic.org/start) -![](image/opennic.jpg) or any of the non-Cloudflare DNS services [here](https://www.lifewire.com/free-and-public-dns-servers-2626062) +![](image/opennic.jpg) or any of non-Cloudflare DNS services. +- You can use Tor as DNS resolver. If you're not Tor expert, [ask question here](https://tor.stackexchange.com/). + +> **How?** +> 1. Download [Tor](https://www.torproject.org/) and install it on your computer. +> 2. Add this line to "torrc" file. [DNSPort description](https://www.torproject.org/docs/tor-manual.html.en). +> DNSPort 127.0.0.1:53 +> 3. Restart Tor. +> 4. Set your computer's DNS server to "127.0.0.1". - Tell us if you see [this functionality](https://ungleich.ch/en-us/cms/blog/2018/08/04/mozillas-new-dns-resolution-is-dangerous/) start to creep up beyond Firefox Nightly into more stable versions of Firefox.