Spike: Investigate Using Cloudflare
Open, Needs TriagePublic
Actions

Assigned To

None

Authored By

	Tarrow
	Jul 17 2025, 2:11 PM

Description

After emailing IT to check it's alright try using cloudflare's WAF "bot management" option on staging.

Talk to EM about getting business plan paid for on the cheap tier (the $20 a month one).

Please take notes on:

how easy it is to configure the rules?
how it works for different domains (including custom domains)?
how easy you think it would be to add new hostnames from the platform api via their api?
the blocking strategies (with particular c.f. to anubis)
exceptions (how do we unblock legit users?)
also how does this work for our API traffic?
do we need the $20 a month or $200 a month plan

Related Objects

Mentioned Here: T399851: Spike: Investigate using Anubis
T226688: Block web crawlers from accessing Cloud Services

Event Timeline

Tarrow created this task.Jul 17 2025, 2:11 PM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJul 17 2025, 2:11 PM

For information, here is the task for toolforge spam blocking, if it can help to choose a solution: T226688: Block web crawlers from accessing Cloud Services

Tarrow assigned this task to Andrew-WMDE.Jul 25 2025, 8:12 AM

Tarrow moved this task from To do to Doing on the Wikibase Cloud (Kanban Board) board.

Andrew-WMDE removed Andrew-WMDE as the assignee of this task.Jul 25 2025, 9:02 AM

Andrew-WMDE moved this task from Doing to To do on the Wikibase Cloud (Kanban Board) board.

Andrew-WMDE subscribed.

Still figuring out GDPR requirements. However, we have now deployed Anubis (T399851) and are going to continue to monitor it to see if it can solve the issue with less time and resources.

Tarrow edited projects, added Wikibase Cloud; removed Wikibase Cloud (Kanban Board).Wed, Dec 17, 3:23 PM

Spike: Investigate Using CloudflareOpen, Needs TriagePublicActions

Description

Related Objects

Event Timeline

Spike: Investigate Using Cloudflare
Open, Needs TriagePublic
Actions