LETTER

Cloudflare has been leaking HTTPS data from thousands of major websites for months

Quincy Larson
Feb 24, 2017 · 2 min read

Here are three links worth your time:

  1. Cloudflare has been leaking HTTPS data from thousands of major websites for months. freeCodeCamp uses CloudFlare, but not the products that were vulnerable, so your data with us (which is really just your email address and BCrypt-encrypted password) was NOT affected. Here’s a postmortem of the bug by a Cloudflare engineer (13 minute read)
  2. Inside Facebook’s AI machine (20 minute read)
  3. After 9,223,372,036,854,775,808 tries, Google has created the first SHA-1 collision, proving that the encryption scheme is no longer secure (4 minute read)

Bonus: How an AI is learning how to beat the best human players at Super Smash Bros. Melee (10 minute read)

Thought of the day:

“The mantra of any good security engineer is: “Security is a not a product, but a process.” It’s more than designing strong cryptography into a system; it’s designing the entire system such that all security measures, including cryptography, work together.” — Bruce Schneier

Funny of the day:

Webcomic by CommitStrip

Study group of the day:

freeCodeCamp Nairobi

Happy coding!

– Quincy Larson, teacher at freeCodeCamp

freeCodeCamp.org

This is no longer updated. Go to https://freecodecamp.org/news instead

Quincy Larson

Written by

Quincy Larson

Teacher at https://freeCodeCamp.org

freeCodeCamp.org

freeCodeCamp.org

This is no longer updated. Go to https://freecodecamp.org/news instead

See responses (4)

Discover Medium

Welcome to a place where words matter. On Medium, smart voices and original ideas take center stage - with no ads in sight. Watch

Make Medium yours

Follow all the topics you care about, and we’ll deliver the best stories for you to your homepage and inbox. Explore

Become a member

Get unlimited access to the best stories on Medium — and support writers while you’re at it. Just $5/month. Upgrade
AboutHelpLegal