nanog mailing list archives
Re: Captchas on Cloudflare-Proxied Sites
From: Tom Beecher via NANOG <nanog () lists nanog org>
Date: Tue, 1 Jul 2025 11:04:37 -0400
Another example of the broken security space. The security vendor points at the tech-incapable customer. The tech-incapable customer points right back at the security vendor. Wash. Rinse. Repeat.
If a customer chooses to put their website on a CDN, they MUST know: - What the CDN does (or does not do) - What options are available to them ( free or paid ) - How to effectuate changes ( portal or ticket) that they need to get done. - How to get support from the CDN should a user encounter a problem they cannot solve A CDN is not a magic get out of jail free card that allows you to completely abdicate all technical responsibility for your website. On Tue, Jul 1, 2025 at 10:44 AM Mike Hammett via NANOG < nanog () lists nanog org> wrote:
Another example of the broken security space. The security vendor points at the tech-incapable customer. The tech-incapable customer points right back at the security vendor. Wash. Rinse. Repeat. ----- Mike Hammett Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP ----- Original Message ----- From: "Johannes Müller Aguilar via NANOG" <nanog () lists nanog org> To: nanog () lists nanog org Cc: "Johannes Müller Aguilar" <JMuellerAguilar () anexia com> Sent: Tuesday, July 1, 2025 9:05:16 AM Subject: Captchas on Cloudflare-Proxied Sites Hello, We operate as a cloud service provider, and much of our traffic is indeed—per Cloudflare’s terminology—“bot traffic.” For about a month, users behind IP addresses we announce have been prompted to solve captchas when accessing Cloudflare-proxied sites. When we contacted Cloudflare support, they referred us to their customers (e.g., Stack Overflow, OpenAI), but support from those sites directed us back to Cloudflare. I reviewed Cloudflare Radar but found it limited in actionable insights. We also announce prefixes to Cloudflare where the originating AS primarily serves end-users—and where Radar shows over 80% human traffic—yet users still encounter captchas, suggesting the issue may be related to our announcing AS. Has anyone experienced this or found effective ways to resolve it? Any advice or pointers would be greatly appreciated. Best regards, Johannes _______________________________________________ NANOG mailing list https://lists.nanog.org/archives/list/nanog () lists nanog org/message/NZO6QF5XSVPPPTZ74P74YWWDEWJ3S7EB/ _______________________________________________ NANOG mailing list https://lists.nanog.org/archives/list/nanog () lists nanog org/message/GJDCCAF2XZAVE2TBBHIK6IQ4JKOKYYIX/
_______________________________________________ NANOG mailing list https://lists.nanog.org/archives/list/nanog () lists nanog org/message/OD66L3EZA4HAFZNWQZQV4X53U4N7WBUR/
Current thread:
- Re: Cats vs Mice [CAPTCHAs on Cloudflare-proxied sites], (continued)
- Re: Cats vs Mice [CAPTCHAs on Cloudflare-proxied sites] nanog--- via NANOG (Jul 09)
- Re: Cats vs Mice [CAPTCHAs on Cloudflare-proxied sites] niels=nanog--- via NANOG (Jul 09)
- Re: Cats vs Mice [CAPTCHAs on Cloudflare-proxied sites] Brandon Martin via NANOG (Jul 09)
- Re: Cats vs Mice [CAPTCHAs on Cloudflare-proxied sites] nanog--- via NANOG (Jul 09)
- Re: Cats vs Mice [CAPTCHAs on Cloudflare-proxied sites] Brandon Martin via NANOG (Jul 09)
- Re: Cats vs Mice [CAPTCHAs on Cloudflare-proxied sites] nanog--- via NANOG (Jul 09)
- Re: Captchas on Cloudflare-Proxied Sites Aaron C. de Bruyn via NANOG (Jul 02)
- Re: Captchas on Cloudflare-Proxied Sites Constantine A. Murenin via NANOG (Jul 02)
- Re: Captchas on Cloudflare-Proxied Sites nanog--- via NANOG (Jul 06)
- Re: Captchas on Cloudflare-Proxied Sites Tom Beecher via NANOG (Jul 01)
- Re: Captchas on Cloudflare-Proxied Sites Michael Thomas via NANOG (Jul 01)
- Re: Captchas on Cloudflare-Proxied Sites Barry Shein via NANOG (Jul 01)
- Re: Captchas on Cloudflare-Proxied Sites Jeroen Wunnink via NANOG (Jul 07)