@deirdresm
> [In my experience], [CloudFlare] usually leaves bigger fingerprints than (HTTP Headers), but I haven't been paying close attention(…)

We recommend people who are able, pay attention to the MITM attack.

We're unsure whether the firewall setup above works on linux phones, perhaps the #BlockCloudFlareMITMAttck (or #BCMA) addon can help that use case:

https://notabug.org/dCF/deCloudflare/src/master/subfiles/addon/bcma.md

Onion: http://wmj5kiic7b6kjplpbvwadnht2nh2qnkbnqtcv3dyvpqtz7ssbssftxid.onion/dCF/deCloudflare/-/blob/master/subfiles/addon/bcma.md

@defcon @torproject
2/
…without the need to enable JS (please see above hashtag for our previous writings on how this might work),
2) Access to the #NoScript addon, allows enabling javascript on a per-domain basis as was the case in previous versions,
3) Try lowering security to [Safer,Standard] Mode.
b) Last we checked #TailsOS uses uBlock in #TorBrowser, why does the official not? We've tested it. Many sites work fine,
c) Might 'Block CloudFlare MITMAttack (#BCMA)' addon be included in…2/3

Brick City Mutual Aid is a cool group (if I do say so myself) out of so-called Newark, New Jersey and the surrounding areas.

If you had six dollars to Venmo BCMA, that covers a care package for an unhoused community member. Any donation amounts accepted gratefully, and if you are looking for a packet or a lunch this month, food distribution is Sunday p.m. Message for details. Thank you!

#MutualAid #BCMA #MutualAidRequest #NewJersey #TheGardenState #MeansAndEnds #StitchingCommunity #SixDollars

@james
It is important to make the invisible threats, the silent war against the internet, quite visible.

A great addon that we try to recommend frequently is #BCMA. The cloud icon turns orange when a site is being #MITM'd by CloudFlare.

It would be so helpful if it did the same for Amazon, #Akamai, #LiteSpeed and others, but its a very good at helping us quickly identify and '#BLOCKMARK' (blockBookmark) a bad website quickly and easily.
@Mirk0dex

Belanatamab withdrawn: @oncology RT @CancerDoc: The #BCMA #ADC belanatamab mafodin-blmf was withdrawn from the US (#AcceleratedApproval in August 2008) after DREAMM-3 P3 confirmatory trial (belantamab vs. PomDex) for patients with #RRMM showed that PFS did not reach statistical significance (11.2 vs 7 months; HR, 1.03; 95% CI, 0.72 – 1.47). Another example that #FDA #AcceleratedApproval mechanism works as it should!!!

https://www.medscape.com/viewarticle/984437

I cofounded Brick City Mutual Aid nearly 3 years ago now. We’ve given our more than $40k in critical aid back to the community. Groceries and hot food to targeted and vulnerable communities across the Newark area. We’ve helped housing organizing. We’ve done naloxone trainings and distributions. We’ve done crisis interventions. And so on…

We are not a non-profit for the safety and integrity of our people and our project. This also means every single dollar you donate goes right back into the community.

Please consider a donation, and retoots are free.

#mutualaid #brickcity #bcma #newark #nork #newjersey #nj #solidarity

@parthipan This website runs with Cloudflare. Ironic! #bcma

@thunderbird @tilvids Cool, that Thunderbird is still alive and you are kicking.

But I can't see your roadmap, because my browser blocks everything from #Cloudflare.

Sorry, I am an activist for a free internet and use #bcma currently.

More information here:
https://framagit.org/dCF/deCloudflare/-/blob/master/subfiles/addon/bcma.md

@cnx
Thanks for doing this.

Despite cf pawning 20% of the internet, its those 20% that are among the most prominent. So about 50% of the sites you'll be suggested to visit will probably be cf.

If you want something that catches those 50% of websites without digging through the (#)NetworkTab, we encourage #BCMA Addon.

In Tor the only option that doesn't lead to an increased fingerprint is the "Change icon and title option" (assuming Safest Mode/no js).

We really love that the Block CloudFlare MITM Attack (#BCMA) Add-on for #Firefox (and #TorBrowser) is finally offered by Mozilla.

Its not perfect, but it is version 1.0.0. 😃

We are concerned that the "Block request immediately" option could be used to fingerprint a person as a BCMA user. We are supportive of #blocklisting for min 6 months (currently it only stores the last 500 #MITM'd domains, but sites could get dropped from the list in a matter of weeks, given the preponderance of CF sites).

@Mirk0dex @kzimmermann

We are delighted to inform that Mozilla recently (finally, bless) approved the #BCMA Add-on by https://crimeflare.eu.org!

FIND IT HERE:
https://addons.mozilla.org/en-US/firefox/addon/stopcloudflare/

ADD-ON XPI FILE (repo also linked to on above page):
https://git.disroot.org/dCF/deCloudflare/src/branch/master/addons/releases

REPO README
https://git.disroot.org/dCF/deCloudflare/src/branch/master/subfiles/about.bcma.md

Though its a small step, we think it represents a watershed moment for the movement against the #MITMAttack on the web.

Its have been reported that #UnixSheikh.com removed this paragraph.

> Take a look at the [Block Cloudflare MITM Attack](https://github.com/nym-zone/block_cloudflare_mitm_fx/) Firefox plug-in. This plug-in will block your website completely if you're using CloudFlare and it is a highly recommended plug-in.

If true, will be good to learn why.

CURRENT VERSION: Stay away from CloudFlare (2017/12/20)
https://unixsheikh.com/articles/stay-away-from-cloudflare.html

#cloudFlare #BCMA #fireFoxAddon

There are other great things that you can do to Block the #CloudFlare MITM Attack (#BCMA), such as installing the BCMA Addon.

Learn more at https://crimeflare.eu.org

Please boost while we still have a somewhat-public internet.

@polymerwitch
The #uBlock addon is a good one.

Don't forget to consider the #BCMA addon (Block CloudFlare MITM Attack). Cf are currently cutting people off from online banking (40% of our smaller banks in Australia are cf).

Choking off ad revenue is unfortunately not enough, as they can (and do) just print money now in exchange for surveillance and ideological control.

We simply resist all CAGEFAM video and subscription services.

2/2 …can do something.

The #BlockCloudFlare addon is here:
https://git.disroot.org/dCF/deCloudflare/src/branch/master/subfiles/about.bcma.md

Please consider contacting the #TorDevs at their issue creation site:
https://anonticket.onionize.space

If many of us contact them, they may come to their senses and warn users a site is behind Cloudflare (and other #dotcons like #Amazon). The global menace that is Cloudflare…

…MUST BE RESISTED NOW!

Please boost.

#resist #crimeFlare #BCMA #addOn

We are not very impressed about this but #TailsOS users have a different #fingerprint to regular #TorBrowser users.

TailsOS adds #uBlock addon

So its arguable that you could match the #fingerprint of a TailOS user by using the #addon.

Its odd that Tails added it (or that #TorProject isn't).

This may change.

Those who are #Cloudflare-aware can use #BCMA (Block Cloudflare MITM Attack).

#onionMaximalist #browserAddons #MITMAttack

@lain
In terms of #addons, for #TorBrowser users who want the same behaviour, and thus #fingerprint as #TailsOS users, simply add #uBlock.

:)

We may also use a PW manager and #BCMA (Block Cloudflare MITM Attack) addon.

#onionMaximalist
@wowaname @Clifford
@icedquinn

@zleap
2/2
CORRECTION: *some* say, most have no clue their site has been put through Cf.

See https://git.disroot.org/dCf/deCloudflare

In the /subfiles folder you'll find interesting info. Especially the subfiles/cloudflared/ folder.

There's a FOSS #addon that people can use in their browser, BCMA (Block Cloudflare MitM Attack).

#BCMA
@patricksudlow @jeffcliff @witchescauldron @msaunders @MitiGator@101010.pl

Poll: Should the 'Block Cloudflare MITM Attack' (#BCMA) Firefox #addon be a part of #TorBrowser by default?

Explain.

If so, should the default behaviour be to warn the user that they are about to access a #Cloudflare site?

Should it stop there, or warn users about all known #BigTech #surveillance, eg. #amazon, #google etc?

#massSurveillance #deleteCloudflare #TorProject