Experience story that it will be a big deal if it is blocked by Cloudflare

A net user who seems to have touched Cloudflare's wrath, although he has no idea himself, reports the miserable situation.

You don't want to be on Cloudflare's naughty list | Ctrl blog

The author of the blog is Daniel Aleksandersen, who lives in Oslo, Norway, and although I don't know what caused it, for a week, apps and websites that require an internet connection were slow to load, partially broken, It was said that it was hit by a situation that it was not read at all. In all of them, it seems that a message was displayed that it was blocked by Cloudflare.

At that time, Cloudflare's 'challenge page' was displayed every time, and I was asked to enter a CAPTCHA. Fortunately, CAPTCHA itself did not bother me, but the time it took to display the page increased from 4 seconds or less to 20 seconds to 80 seconds, and I remembered the times when there was no high-speed Internet.

The cause may be whether Mr. Alexandersen's IP reputation (IP address health) was classified as a high bot score or a threat score that sends malicious requests, but Cloudflare does not provide a means for you to view or dispute your IP reputation score, so you cannot be identified.

In addition, Mr. Alexandersen's partner used Bitwarden for password management, so the insertion of a challenge page by Cloudflare interrupted the login process and prevented him from logging into his account. On the other hand, Mr. Alexandersen escaped the difficulty because he used an offline password manager called KeePassXC . ``I was honestly a little happy that the effort I had spent on not having to rely on a hosted password manager finally paid off,'' said Alexandersen.

Ultimately, this situation was resolved 6 days after it occurred. Ultimately, Mr. Alexandersen did not know what was the cause.

Regarding this, Hacker News, a social news site, said that blocking legitimate users by strengthening bot countermeasures is putting the cart before the horse, saying, ' Even if you can save a little money by blocking bots, 10 If it's supposed to block or cause a lot of trouble to people's legitimate users, is it worth it? '