Cloudflare Checking if the site connection is secure

Nothing like that. I’m trying to get in touch with the support for weeks. The way you described will lead me here (to the forum) anyway. There is no such thing for a regular user like me (not the CF customer) to create a support ticket. I tried to e-mail them like 8x to the main support e-mail, all answers are basically automatic nonsense saying that I have to ask (eventually) on the forum. No one (from CF) wants to explain what is going on! That’s the real problem.

You are correct, unfortunately there is no way for non-customers to contact Cloudflare. The correct way to approach this is to contact one of the websites you are having issues with, they can take the RayID you see on the page and check their logs to see why you received the challenge/block. Once you know that it can help figure out where the problem is.

This tip has some general information on common causes, it’s always worth checking your network as sometimes this is caused by something malicious there.

Well, every second site asking me for this security check, I can’t ask them all, right? Isn’t it easier to simply check the source of this issue (Cloudflare)? All those sites (has nothing to do with each other - from all around the world) are using the CF and only CF knows why they have to check me every f (2nd) time I visit some site. Ridiculous. On some sites I have to confirm “secure connection” like 30x a day!!! Once it’s secure and confirmed, WHY should I do this over and over again??!? CF could simply check their lists and say, yep, this IP (or IP range) is there because of this and that. I’m curious if it’s possible to add an IP manually to this kind of blacklist too, because I pissed some guys from very known IT platform?

It would be easier for you but it’s not something that can be done. Cloudflare don’t expose exactly how they work out IP reputation for obvious reasons. Cloudflare also won’t disclose customer details or settings and telling you this could do that. Almost every Cloudflare setup is slightly different, it’s not just ‘checking a list’.

Sorry for deleted, posts, can’t find the “edit” button.

Ok, how would you explain that every 2nd site with CF wants to make my life a bit “better”? Obviously it goes under same scenario, it checks some kind of list and see my IP or my setup and immediately offers a security check procedure.

Not to mention, I got the same security check from sites I didn’t visit for months (or even years!). So it’s not like I abuse the site, the site already consider me as a threat because CF said so.

It could be down to threatscore which is used in a lot of sites security posture but that’s not something we can tell for sure.

I did make a tool a while ago that can tell you what that number is. If you visit let us know what you see.

Customers can set their security level to different levels which can challenge or block based on this. The default would challenge you if this number is greater than 14. IP Reputation is calculated based on Project Honeypot, external public IP information, as well as internal threat intelligence from the WAF managed rules and DDoS.

1 Like

Sorry, I had to wait 22hrs becuase of the forum messages limit.
It says:
Your Threat Score is: 0

Any other ideas?

While the situation is most likely out of your control, the only realistic way to figure this out is to reach out to a sympathetic site owner where this is happening, and give them the RayID of one of these checks.

It sounds like you were able to get into the threatscore test site without issue, so that particular site isn’t an option.

This is a long thread, and I believe you said you have tried a different browser and incognito mode. And may have answered these as well:

  1. Does this happen on a different device on your home network?
  2. Does this happen if you tether your computer to your phone’s WiFi hotspot?
  3. Does this happen on low-profile sites? (by this, I mean something that’s most likely not an Enterprise-level site. Something like a personal blog, local organization, etc.)
1 Like

Got in touch with one of the owner. He said he did some adjustments but the annoying “You’ve been blocked” is still there. He can’t help me anymore - his last words. He won’t soft the settings any more. So basically if I want to use his site, I have delete all cookies, log in again and wait for the next sudden “You’ve been blocked”. There is no pattern, it could happen after any click. This is just one example, there are more sites (not that aggressive though) which constantly want to “check” me over and over again.

What browser are you using? Do you have any browser extension?

Firefox, a lot of various extensions - but if that’s the reason, that would be the problem for many other users, right? All extensions are from official FF addon page. I have two different profiles with different sets of extensions - I have the “CF check” problem on both.

“It is”.

Cloudflare needs to verify the integrity of the browser and confirm that you are not a bot. Extensions can make this harder by spoofing the UA, preventing fingerprint, switching the header order, anything.

While those addons sliiightly decrease your fingerprint, it also triggers security solutions that want to mitigate bots (this would most likely happen with other vendors too, it just happens that CF is used almost everywhere).

I’m assuming that you are using privacy-focused extensions but, if you are using “normal” extensions, then it might be something else that is interfering with the challenge. Can you share a list of extensions? Do you have noFingerprint enabled on firefox?

1 Like

He could have at least told you which setting was blocking you. That would have helped tremendously.

99% of my extensions are helpers like UBO, tamper monkey with some other “helpers” (safe - checked), some graphic design tools (css, measurements related), downloaders (files, youtube etc - all safe, I use them for years). Tried to google “noFingerprint” Firefox - found this addon No Fingerprint by [Sam0230] - no I don’t use it. No other relevant finds. Is it some kind of about:config setting? I remember I used Ghostery and Privacy Badger - but it’s like 2-3 years ago. No privacy addons since then. Well, maybe some privacy filters enabled in the UBO, but it was always like this even 5 years ago…

Sure, I asked him already, he didn’t reply yet. Hopefully he will, eventually.

1 Like

Earlier, I mentioned that I thought you’d already tried a different browser/incognito mode. Reading back through this thread, I don’t see that. Have you tried that? You also didn’t answer the following:

Yeah, happened once on a phone (I don’t use phone for browsing much, more like never).
Nope, didn’t try the “tether” thing (yet). Regarding the “low-profile” sites - just opened like 50 different sites in a batch (folder with online tools) - not a single CF check surprisingly. I’d say those are low-profile, pdf converters, online music tools etc…

I still think I (this setup) got “caught” on some site and been marked (maybe even manually!) as “dangerous” and now it’s in some kind of CF list among the others.