Recent Comments
- lin on AWS CodeCommit 總算支援東京區了...
- John Linq on 對 Open Data 的攻擊手段
- John Linq on Apache Foundation 宣佈禁止使用 Facebook BSD+Patents 的軟體
- CQD on 創業的點子
- John Linq on Stripe 香港開台,以及 Alipay 與 WeChat Pay 的支援
Archives
- July 2017 (30)
- June 2017 (37)
- May 2017 (59)
- April 2017 (55)
- March 2017 (55)
- February 2017 (35)
- January 2017 (42)
- December 2016 (48)
- November 2016 (32)
- October 2016 (35)
- September 2016 (78)
- August 2016 (69)
- July 2016 (19)
- June 2016 (42)
- May 2016 (61)
- April 2016 (51)
- March 2016 (74)
- February 2016 (87)
- January 2016 (31)
- December 2015 (36)
- November 2015 (61)
- October 2015 (72)
- September 2015 (53)
- August 2015 (42)
- July 2015 (38)
- June 2015 (30)
- May 2015 (18)
- April 2015 (57)
- March 2015 (41)
- February 2015 (50)
- January 2015 (35)
- December 2014 (50)
- November 2014 (56)
- October 2014 (41)
- September 2014 (37)
- August 2014 (37)
- July 2014 (28)
- June 2014 (50)
- May 2014 (32)
- April 2014 (46)
- March 2014 (38)
- February 2014 (29)
- January 2014 (52)
- December 2013 (50)
- November 2013 (45)
- October 2013 (40)
- September 2013 (48)
- August 2013 (22)
- July 2013 (25)
- June 2013 (13)
- May 2013 (16)
- April 2013 (28)
- March 2013 (37)
- February 2013 (36)
- January 2013 (57)
- December 2012 (44)
- November 2012 (10)
- October 2012 (12)
- September 2012 (21)
- August 2012 (21)
- July 2012 (25)
- June 2012 (8)
- May 2012 (10)
- April 2012 (11)
- March 2012 (10)
- February 2012 (11)
- January 2012 (5)
- December 2011 (13)
- November 2011 (12)
- October 2011 (10)
- September 2011 (7)
- August 2011 (5)
- July 2011 (11)
- June 2011 (21)
- May 2011 (22)
- April 2011 (36)
- March 2011 (43)
- February 2011 (23)
- January 2011 (24)
- December 2010 (34)
- November 2010 (19)
- October 2010 (16)
- September 2010 (15)
- August 2010 (10)
- July 2010 (12)
- June 2010 (3)
- May 2010 (3)
- April 2010 (4)
- March 2010 (8)
- February 2010 (14)
- January 2010 (13)
- December 2009 (16)
- November 2009 (28)
- October 2009 (24)
- September 2009 (12)
- August 2009 (7)
- July 2009 (10)
- June 2009 (11)
- May 2009 (22)
- April 2009 (21)
- March 2009 (18)
- February 2009 (7)
- January 2009 (32)
- December 2008 (19)
- November 2008 (12)
- October 2008 (15)
- September 2008 (14)
- August 2008 (15)
- July 2008 (18)
- June 2008 (20)
- May 2008 (19)
- April 2008 (27)
- March 2008 (22)
- February 2008 (21)
- January 2008 (15)
- December 2007 (22)
- November 2007 (17)
- October 2007 (29)
- September 2007 (31)
- August 2007 (34)
- July 2007 (31)
- June 2007 (36)
- May 2007 (23)
- April 2007 (22)
- March 2007 (30)
- February 2007 (50)
- January 2007 (75)
- December 2006 (48)
- November 2006 (59)
- October 2006 (89)
- September 2006 (29)
- August 2006 (48)
- July 2006 (14)
- June 2006 (35)
- May 2006 (62)
- April 2006 (63)
- March 2006 (72)
- February 2006 (83)
- January 2006 (56)
- December 2005 (46)
- November 2005 (60)
- October 2005 (27)
- September 2005 (54)
- August 2005 (83)
Tags
Categories
- Anime (29)
- AWS (414)
- BBS (22)
- Blog (249)
- Book (31)
- Bridge (1)
- Browser (524)
- Cassandra (2)
- CDN (180)
- Cloud (556)
- CMS (58)
- Comic (19)
- Computer (4,425)
- Computer and Network Center (33)
- CSS (68)
- Database (419)
- DNS (127)
- Editor (24)
- Financial (89)
- Firefox (231)
- Food (14)
- FreeBSD (139)
- FTP (3)
- Game (60)
- GCP (4)
- Go (1)
- GoogleChrome (165)
- Hardware (382)
- IE (97)
- Joke (159)
- Lab (4)
- Library (4)
- Linux (173)
- MacOS (30)
- Mail (118)
- MariaDB (19)
- Movie (35)
- Murmuring (4,564)
- Music (49)
- MySQL (294)
- NCTU (65)
- NetBSD (7)
- Network (3,227)
- OpenBSD (8)
- Opera (26)
- OS (389)
- P2P (131)
- Photo (72)
- Political (124)
- PostgreSQL (41)
- Privacy (6)
- Programming (763)
- Recreation (533)
- RSS (79)
- Safari (38)
- Science (97)
- Search Engine (181)
- Security (1,040)
- Service (34)
- SMS (10)
- Social (212)
- Software (2,342)
- Spam (107)
- Sport (10)
- Telephone (115)
- Television (62)
- Usenet (15)
- Vim (13)
- VPN (17)
- Wiki (48)
- Windows (74)
- WWW (1,614)
Blogroll
Meta
Category Archives: CDN
把自己的 Blog 丟上 CloudFront
因為 CloudFront 也支援 HTTP/2 了,對於效能的衝擊應該小不少。另外當初希望多用點 IPv6,CloudFront 也支援了。最後看了一下自己的流量,每個禮拜大約 380MB 與 210K requests,也還能接受。 就把自己的 blog 再次丟上 CloudFront 玩看看,不過這次只上了 Price Class 100 (只有歐美與加拿大)。之後也許來玩看看 AWS WAF,不過開起來應該就跟 CloudFront 費用差不多了?XD 先來看看效果以及有沒有 bug 吧...
Web Cache Deception Attack
在「How (Not) to Control Your CDN」這邊看到了「Web Cache Deception Attack」這個攻擊方式。 攻擊的手法是利用網站會把 /user/personal-info/foo.css 與 /user/personal-info 視為一樣的內容時,配合 CDN 或是 reverse proxy server 會把 .css 設定無差異 cache 時,就可以在 cache server (cache edge) 取得使用者的敏感資料。 這主要是 url routing 的條件放太寬造成的。 另外 Mark Nottingham 還建議 cache 應該在 origin … Continue reading
Amazon CloudFront 又增加東京機房了...
CloudFront 又增加東京的點了,這是第四個點:「Amazon CloudFront adds new Edge Locations in Tokyo, Japan and Dallas/Fort Worth, Texas」。 This is our fourth edge location in the Tokyo area and our third in Dallas, bringing the total number of CloudFront locations to 87 (including 76 … Continue reading
Cloudflare 推出 SSL 的 SaaS 服務
Cloudflare 把之前需要人力介入的操作,包成 API 直接提供給大家用:「Introducing SSL for SaaS」。 要解決的是「用戶自己的 domain 掛到我的服務上,而且需要 HTTPS」,而 Cloudflare 提供 API 把上面三部跑完,下面的就是 Cloudflare 自己處理 (包括取得用戶的同意):
EdgeCast 總算記得要推出 HTTP/2 了...
每次看到 EdgeCast 的業務都會抱怨一下,總算正式公佈了... EdgeCast 的 HTTP/2 預定在 2017/03/31 全面上線:「HTTP/2 Coming Soon to Our Customers with SSL Certificates!」。 由於是逐步上線,有些網站會在 3/31 前就生效 (像是 EdgeCast 的官網): The rollout of HTTP/2 will be gradual, and you may start to see some of your content … Continue reading
分析現在還有多少不安全的 JavaScript Library 被使用
在「Thou shalt not depend on me: analysing the use of outdated JavaScript libraries on the web」這邊看到對 JavaScript Library 的研究。 jQuery 沒有什麼疑問的還是最大宗,查了一下應該是 CVE-2011-4969 的影響,對 jQuery 1.6、1.6.1、1.6.2 三個版本有影響。 另外也提到了 hosting 的部份,可以看到 Google Hosted Libraries 還是佔有最高的比率。
Cloudbleed:Cloudflare 這次的安全問題
Cloudflare 把完整的時間軸與影響範圍都列出來了:「Incident report on memory leak caused by Cloudflare parser bug」。 出自於 2/18 時 Google 的 Tavis Ormandy 直接在 Twitter 上找 Cloudflare 的人: Could someone from cloudflare security urgently contact me. — Tavis Ormandy (@taviso) February 18, 2017 Google 的 … Continue reading
Cloudflare 總算支援 TOTP 了
Cloudflare 宣佈支援 TOTP 形式的 OTP 了:「You can now use Google Authenticator and any TOTP app for Two-Factor Authentication」。 這樣可以重設然後把 Authy 砍掉了,這樣就不用把 OTP 的 secret data 放在別人家了 :o
CloudFront 在慕尼黑加到第五個機房...
德國是歐洲區重要的交換中心,不過量大到可以讓 CloudFront 加到第五個點就頗意外的:「Announcing New Munich Edge Location for Amazon CloudFront, our 7th Edge Location in Germany」。 慕尼黑的第五個點,全德國第七個點: The Munich location is our third location in Germany (joining Frankfurt and Berlin), and our 7th edge location in Germany bringing the total … Continue reading
Cloudflare 因為閏秒炸掉...
Cloudflare 這次閏秒炸掉:「How and why the leap second affected Cloudflare DNS」,影響範圍包括了 DNS query 與 HTTP request: At peak approximately 0.2% of DNS queries to Cloudflare were affected and less than 1% of all HTTP requests to Cloudflare encountered an error. 主要的原因在於 … Continue reading