Buy commercial curl support from WolfSSL. We help you work
out your issues, debug your libcurl applications, use the API, port to new
platforms, add new features and more. With a team lead by the curl founder
himself.
Re: Handling Cloudfare issues
- Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]
From: Henrik Holst via curl-library <curl-library_at_lists.haxx.se>
Date: Sat, 30 Sep 2023 10:46:56 +0200
I don't think Cloudflare changed anything in their backend. Sites that use
CloudFlare can activate a special protection mode, e.g Reserve Bank of New
Zealand uses this mode constantly: https://www.rbnz.govt.nz/ so is a good
candidate for tests. This mode is supposed to be activated if your site is
experiencing DDoS like attacks but some site operators seem to think that
it makes their site more secure so they enable it 24x7 (just like how some
write protect pdf-files to make them "more secure").
/HH
Den lör 30 sep. 2023 kl 06:49 skrev Mac-Fly via curl-library <
curl-library_at_lists.haxx.se>:
> Hi Dan,
>
> thank you for tat hint! It took a while to get the tool (curl-impersonate)
> up and running but it didn't solve the issue this time. Also, I am using
> libcurl - so it would have been a temporary solution only. Meanwhile its
> magically working again for all connection. I assume Cloudfare changed the
> backend (see the other answer of mine in this thread).
>
> I am not very happy about the situation and noticed you are one of the
> libcurl team members, too. I know it should actually not be your business,
> but if you can integrate some functions in libcurl or provide some
> guidelines that help in such cases I would be very grateful.
>
> Once again thank you,
> Morten.
>
> ----- Original Message -----
> From: Dan Fandrich via curl-library <curl-library_at_lists.haxx.se>
> To: curl-library_at_lists.haxx.se
> Cc: Dan Fandrich <dan_at_coneharvesters.com>
> Date: Tue, 26 Sep 2023 14:38:27 -0700
> Subject: Re: Handling Cloudfare issues
>
> > On Tue, Sep 26, 2023 at 11:29:16PM +0200, Mac-Fly via curl-library wrote:
> > > To rant a little: I don't now whats wrong with the internet these days
> > > and why such checks are required at all. I am sure they break a lot of
> > > applications like mine! (Rant off.)
> >
> > You're preaching to the choir here.
> >
> > > I am sure I am not the only one and now I am searching here for answers
> > > because I believe many curl users are affected, too. Please help me!
> :-)
> >
> > There's a project called curl-impersonate that uses a patched version of
> curl
> > to exactly impersonate browsers in how they talk to sites; headers,
> cookies,
> > TLS negotiation flags, etc. That has worked for me to get around this
> problem,
> > but I'm sure it won't be long before even that won't be enough.
> >
> > Dan
> > --
> > Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-library
> > Etiquette: https://curl.se/mail/etiquette.html
> >
> --
> Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-library
> Etiquette: https://curl.se/mail/etiquette.html
>
Date: Sat, 30 Sep 2023 10:46:56 +0200
I don't think Cloudflare changed anything in their backend. Sites that use
CloudFlare can activate a special protection mode, e.g Reserve Bank of New
Zealand uses this mode constantly: https://www.rbnz.govt.nz/ so is a good
candidate for tests. This mode is supposed to be activated if your site is
experiencing DDoS like attacks but some site operators seem to think that
it makes their site more secure so they enable it 24x7 (just like how some
write protect pdf-files to make them "more secure").
/HH
Den lör 30 sep. 2023 kl 06:49 skrev Mac-Fly via curl-library <
curl-library_at_lists.haxx.se>:
> Hi Dan,
>
> thank you for tat hint! It took a while to get the tool (curl-impersonate)
> up and running but it didn't solve the issue this time. Also, I am using
> libcurl - so it would have been a temporary solution only. Meanwhile its
> magically working again for all connection. I assume Cloudfare changed the
> backend (see the other answer of mine in this thread).
>
> I am not very happy about the situation and noticed you are one of the
> libcurl team members, too. I know it should actually not be your business,
> but if you can integrate some functions in libcurl or provide some
> guidelines that help in such cases I would be very grateful.
>
> Once again thank you,
> Morten.
>
> ----- Original Message -----
> From: Dan Fandrich via curl-library <curl-library_at_lists.haxx.se>
> To: curl-library_at_lists.haxx.se
> Cc: Dan Fandrich <dan_at_coneharvesters.com>
> Date: Tue, 26 Sep 2023 14:38:27 -0700
> Subject: Re: Handling Cloudfare issues
>
> > On Tue, Sep 26, 2023 at 11:29:16PM +0200, Mac-Fly via curl-library wrote:
> > > To rant a little: I don't now whats wrong with the internet these days
> > > and why such checks are required at all. I am sure they break a lot of
> > > applications like mine! (Rant off.)
> >
> > You're preaching to the choir here.
> >
> > > I am sure I am not the only one and now I am searching here for answers
> > > because I believe many curl users are affected, too. Please help me!
> :-)
> >
> > There's a project called curl-impersonate that uses a patched version of
> curl
> > to exactly impersonate browsers in how they talk to sites; headers,
> cookies,
> > TLS negotiation flags, etc. That has worked for me to get around this
> problem,
> > but I'm sure it won't be long before even that won't be enough.
> >
> > Dan
> > --
> > Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-library
> > Etiquette: https://curl.se/mail/etiquette.html
> >
> --
> Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-library
> Etiquette: https://curl.se/mail/etiquette.html
>
-- Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-library Etiquette: https://curl.se/mail/etiquette.htmlReceived on 2023-09-30