FlareSolverr hasn’t actually worked in a long time though, since CloudFlare started paying attention to it. And it wouldn’t even work for this problem. This is CloudFlare refusing to allow DNS requests for the pirate sites, and instead redirecting users to their “this is a pirate site that was shut down for breaking the law” page. Which FlareSolverr wouldn’t solve even if it was functional, because FlareSolverr only solved the “are you a bot” captcha challenges, not automatic redirects due to DNS.

[–] laconiancruiser@lemmy.zip 1 points 1 month ago

That’s true. I didn’t really think much when I said that, but it wouldn’t help here. It is still working though, as far as I can tell.

[–] Coopr8@kbin.earth 15 points 1 month ago (2 children)

I don't understand how CloudFlare is intermediating the traffick in this case. How can CloudFlare block the sites if they aren't hosted on CloudFlare or using CloudFlare services? Are they acting as an ISP in the UK?

[–] cyrano@lemmy.dbzer0.com 12 points 1 month ago (1 children)

They cache a lot of the internet so like the infra of the internet after the isp

[–] Coopr8@kbin.earth 6 points 1 month ago (1 children)

So the ISP redirects the request from the primary host to the CloudFlare cache under some conditions? but wouldn't that be ineffective at blocking the sites of the browser still attempts to pull from the primary host first? I'm assuming this must be mediated by the ISP somehow otherwise it would just be a browser setting to only pull from the primary host of the domain.

[–] cyrano@lemmy.dbzer0.com 5 points 1 month ago

Cloudflare operates as a reverse proxy between a user’s browser and the origin server of a website or application. When a user requests a webpage, the request is first routed through Cloudflare’s global network instead of directly to the origin server. Cloudflare then forwards the request to the origin server, retrieves the content, and sends it back to the user.

It is doing that by being authoritative DNS provider and providing useful features in case of attack but imagine that everyone start using cloudflare then it become the authority DNS wise.

[–] MrSoup@lemmy.zip 4 points 1 month ago (1 children)

Maybe it includes dns. Using quad9 would bypass this.

[–] guybrush_threepwood_MP@lemmy.dbzer0.com 2 points 1 month ago (1 children)

I bumped into at least one site blocked by cloudflare. When accessing the site, I'm redirected to:

https://www.cloudflare-terms-of-service-abuse.com/stream.ts

So far it happens when I try the landing page of the site, if I go pages I visited in the past I can reach the intended site. Maybe the name resolution is cached.

I haven't tested it much but I'm using Quad9 and it's not making any difference.

Cloudflare seems to be the SOA for the affected sites and then it sets *.ns.cloudflare.com as the primary source and dns.cloudflare.com as the administrator.

To my understanding Quad9, being a recursive DNS resolver, is not the main DNS authority in this case. Quad9 will reach out to cloudflare to refresh the records when the TTL expires and then cloudflare can return a different IP for the domain.

Either affected sites stop using cloudflare, or we reach them via TOR, if they have that option.

[–] MrSoup@lemmy.zip 1 points 1 month ago* (last edited 1 month ago) (1 children)

It happened to me once with 1337x redirecting to that stream.ts, I deleted the prepending "www." and it worked again.

[–] guybrush_threepwood_MP@lemmy.dbzer0.com 1 points 1 month ago

Mysteriously, it is working today when I tested. But good to know there are some ways to still get through.

[–] cupcakezealot@piefed.blahaj.zone 12 points 1 month ago (1 children)

why don't more pirate sites use anubis? cloudflare has always been pro fash trash

[–] mic_check_one_two@lemmy.dbzer0.com 6 points 1 month ago (1 children)

Is Anubis a DNS service? I was under the impression that it was basically just a reverse proxy that you ran, which required a proof-of-work before it would pass the request off to your various services. If that’s the case, it’s doing a fundamentally different job than CloudFlare is. Because the DNS will likely hit CloudFlare before being forwarded to your Anubis. Like the order of the request would be:
User>CloudFlare DNS>Anubis>Site
If that’s the case, using Anubis wouldn’t change the fact that it’s being blocked by CloudFlare.

If Anubis is an actual DNS service, I may need to look into it more for my own use. I hadn’t bothered, because I thought it was more like Nginx.

[–] Tm12@lemmy.ca 7 points 1 month ago

Anubis is self-hosted AI firewall defence. Parent comment is weird.

[–] sakuragasaki46@feddit.it 11 points 1 month ago (1 children)

Guess CloudFlare was evil all along.

[–] Tm12@lemmy.ca 9 points 1 month ago (1 children)

[–] WarmApplePieShrek@lemmy.dbzer0.com 2 points 1 month ago* (last edited 1 month ago)

Was there some drama about trans people existing and using the bathrooms at cloudflare?

[–] breb@piefed.social 5 points 1 month ago (1 children)

are there any alternatives?

[–] dubyakay@lemmy.ca 2 points 1 month ago

DNS provider? Plenty.

[–] Tm12@lemmy.ca 4 points 1 month ago

Cloudflare is more than just DNS. They provide CDN, bot blocking and storage. They most certainly can fuck you up.

[–] Tinkerer@lemmy.ca 2 points 1 month ago

Can somebody suggest another privacy oriented domain hosting provider?