Thibault
@thibmeu.com
Drinking tea. Eating croissant. Distributed systems, Cryptography at Cloudflare
Reposted by Thibault
Node excitement 😉
Congrats to @marcoippolito.dev on making it official: type-stripping in Node 25 is now declared to be stable 🎉
You can run: node index.ts
The capabilities have not changed since Node 24. This is purely a maturity indicator.
Congrats to @marcoippolito.dev on making it official: type-stripping in Node 25 is now declared to be stable 🎉
You can run: node index.ts
The capabilities have not changed since Node 24. This is purely a maturity indicator.
Type stripping is now stable.
Enjoy 🌞
Enjoy 🌞
November 12, 2025 at 7:12 AM
Node excitement 😉
Congrats to @marcoippolito.dev on making it official: type-stripping in Node 25 is now declared to be stable 🎉
You can run: node index.ts
The capabilities have not changed since Node 24. This is purely a maturity indicator.
Congrats to @marcoippolito.dev on making it official: type-stripping in Node 25 is now declared to be stable 🎉
You can run: node index.ts
The capabilities have not changed since Node 24. This is purely a maturity indicator.
Most AI traffic comes from massive shared, platforms. If one user is abusive, how do you rate-limit them without blocking everyone? IP blocks won't work.
We explore private rate limits, a way to stop abuse without tracking users.
blog.cloudflare.com/private-rate...
We explore private rate limits, a way to stop abuse without tracking users.
blog.cloudflare.com/private-rate...
Anonymous credentials- rate-limiting bots and agents without compromising privacy
As AI agents change how the Internet is used, they create a challenge for security. We explore how Anonymous Credentials can rate limit agent traffic and block abuse without tracking users or compromi...
blog.cloudflare.com
October 30, 2025 at 1:06 PM
Most AI traffic comes from massive shared, platforms. If one user is abusive, how do you rate-limit them without blocking everyone? IP blocks won't work.
We explore private rate limits, a way to stop abuse without tracking users.
blog.cloudflare.com/private-rate...
We explore private rate limits, a way to stop abuse without tracking users.
blog.cloudflare.com/private-rate...
Reposted by Thibault
CPU vient de faier une release d'Halloween ! L'Horreur se niche dans l'open-space.
Ose cliquer et écouter, tu n'en reviendras pas ! → cpu.pm/0223
En FM, DAB+, stream @radiofmr.bsky.social , podcast et écoute à la demande.
Ose cliquer et écouter, tu n'en reviendras pas ! → cpu.pm/0223
En FM, DAB+, stream @radiofmr.bsky.social , podcast et écoute à la demande.
cpu.pm
October 23, 2025 at 9:01 AM
CPU vient de faier une release d'Halloween ! L'Horreur se niche dans l'open-space.
Ose cliquer et écouter, tu n'en reviendras pas ! → cpu.pm/0223
En FM, DAB+, stream @radiofmr.bsky.social , podcast et écoute à la demande.
Ose cliquer et écouter, tu n'en reviendras pas ! → cpu.pm/0223
En FM, DAB+, stream @radiofmr.bsky.social , podcast et écoute à la demande.
Reposted by Thibault
Mon conseil beauté pour @firefox.com ? “browser.tabs.insertAfterCurrent” à True. Nettement plus simple quand vous ouvres un nouvel onglet pour faire une recherche par rapport à l'actuel.
October 30, 2025 at 11:03 AM
Mon conseil beauté pour @firefox.com ? “browser.tabs.insertAfterCurrent” à True. Nettement plus simple quand vous ouvres un nouvel onglet pour faire une recherche par rapport à l'actuel.
Reposted by Thibault
It's time to make HTTPS the web's default, and reap the full security benefit from years worth of HTTPS adoption!
security.googleblog.com/2025/10/http...
security.googleblog.com/2025/10/http...
HTTPS by default
One year from now, with the release of Chrome 154 in October 2026, we will change the default settings of Chrome to enable “Always Use Secu...
security.googleblog.com
October 28, 2025 at 5:17 PM
It's time to make HTTPS the web's default, and reap the full security benefit from years worth of HTTPS adoption!
security.googleblog.com/2025/10/http...
security.googleblog.com/2025/10/http...
Reposted by Thibault
We made MLS more decentralized! We are excited to share DMLS that brings fork resilience to the MLS protocol, solving a key challenge in distributed systems while maintaining Forward Secrecy.
This work was made possible by @equalitie.bsky.social, who funded it as part of the Breakout program.
This work was made possible by @equalitie.bsky.social, who funded it as part of the Breakout program.
Making MLS more decentralized
It’s no secret that we at Phoenix R&D are big fans of the Messaging Layer Security (MLS) protocol, having helped it to come into existence. It’s a versatile group key agreement and messaging protocol ...
blog.phnx.im
October 29, 2025 at 9:36 AM
We made MLS more decentralized! We are excited to share DMLS that brings fork resilience to the MLS protocol, solving a key challenge in distributed systems while maintaining Forward Secrecy.
This work was made possible by @equalitie.bsky.social, who funded it as part of the Breakout program.
This work was made possible by @equalitie.bsky.social, who funded it as part of the Breakout program.
Reposted by Thibault
Some thoughts about how to schedule online meetings for a global organisation in an equitable way. https://www.mnot.net/blog/2025/10/26/equitable-meetings
October 26, 2025 at 5:57 AM
Some thoughts about how to schedule online meetings for a global organisation in an equitable way. https://www.mnot.net/blog/2025/10/26/equitable-meetings
Reposted by Thibault
PSA: we're aware that Signal is down for some people. This appears to be related to a major AWS outage. Stand by.
October 20, 2025 at 8:00 AM
PSA: we're aware that Signal is down for some people. This appears to be related to a major AWS outage. Stand by.
Looking to improve auditability of Web applications blog.cloudflare.com/improving-th...
Improving the trustworthiness of Javascript on the Web
Today, there's no way to audit a site’s client-side code as it changes, making it hard to trust sites that use cryptography. We preview a specification we coauthored that adds auditability to the web.
blog.cloudflare.com
October 16, 2025 at 3:10 PM
Looking to improve auditability of Web applications blog.cloudflare.com/improving-th...
Reposted by Thibault
Igalia is excited to announce a new commission from the Sovereign Tech Fund to advance the Servo web engine.
www.igalia.com/2025/10/09/I...
www.igalia.com/2025/10/09/I...
Igalia, Servo, and the Sovereign Tech Fund | Igalia
Igalia is an open source consultancy specialised in the development of innovative projects and solutions. Our engineers have expertise in a wide range of technological areas, including browsers and cl...
www.igalia.com
October 10, 2025 at 11:33 AM
Igalia is excited to announce a new commission from the Sovereign Tech Fund to advance the Servo web engine.
www.igalia.com/2025/10/09/I...
www.igalia.com/2025/10/09/I...
Reposted by Thibault
Expanded CT log activity insights on Cloudflare Radar
Expanded CT log activity insights on Cloudflare Radar
Expanded Certificate Transparency (CT) log insights in Cloudflare Radar, including inclusion activity and growth rate
developers.cloudflare.com
October 10, 2025 at 11:05 AM
Expanded CT log activity insights on Cloudflare Radar
Reposted by Thibault
Et voici la deuxième partie de notre rentrée radio ! Oui, on fait une deuxième fournée, c'est les dix ans de l'émission !
Sur Radio FMR (FM, DAB, streaming), podcast et écoute à la demande cpu.pm/0222
Sur Radio FMR (FM, DAB, streaming), podcast et écoute à la demande cpu.pm/0222
Ex0222 lost + found (rentrée 2025), seconde partie
Dans cette release : C'est toujours notre rentrée 2025, oui, on fait une deuxième fournée, c'est les dix ans de l'émission et [ texte à écrire avant d'enregistrer ] Chapitres :
cpu.pm
October 9, 2025 at 9:01 AM
Et voici la deuxième partie de notre rentrée radio ! Oui, on fait une deuxième fournée, c'est les dix ans de l'émission !
Sur Radio FMR (FM, DAB, streaming), podcast et écoute à la demande cpu.pm/0222
Sur Radio FMR (FM, DAB, streaming), podcast et écoute à la demande cpu.pm/0222
Reposted by Thibault
Oups ! Mais on a oublié de le dire : avec notre retour sont aussi revenu les news : cpu.dascritch.net/post/2025/09...
Et pour rappel , samedi 11 à Artilect à 14h, on enregistre sur les FPGA
Et pour rappel , samedi 11 à Artilect à 14h, on enregistre sur les FPGA
News (septembre 2025)
Extrait de l'émission CPU release Ex0221 : lost + found (rentrée 2025) première partie). [GABRIEL] — Attends mais ???? T'as changé la musique ? [INFESTED GRUNT] — C'est quoi cette
cpu.dascritch.net
October 3, 2025 at 8:03 AM
Oups ! Mais on a oublié de le dire : avec notre retour sont aussi revenu les news : cpu.dascritch.net/post/2025/09...
Et pour rappel , samedi 11 à Artilect à 14h, on enregistre sur les FPGA
Et pour rappel , samedi 11 à Artilect à 14h, on enregistre sur les FPGA
Reposted by Thibault
My newsletter today is about algorithms, culture, and celebrity beef. It's about how we're all complicit in this current festering cultural moment of ours.
It features one of my spiciest theories ever that I do not want to spoil. So please click and read.
www.leahreich.com/algorithmic-...
It features one of my spiciest theories ever that I do not want to spoil. So please click and read.
www.leahreich.com/algorithmic-...
Algorithmic Beef
Depending on the various internets you inhabit, you may not yet be aware that another virulent Twitter (please don't make me call it X) fight erupted last night between rap superstars Nicki Minaj and ...
www.leahreich.com
October 2, 2025 at 2:13 AM
My newsletter today is about algorithms, culture, and celebrity beef. It's about how we're all complicit in this current festering cultural moment of ours.
It features one of my spiciest theories ever that I do not want to spoil. So please click and read.
www.leahreich.com/algorithmic-...
It features one of my spiciest theories ever that I do not want to spoil. So please click and read.
www.leahreich.com/algorithmic-...
Reposted by Thibault
Sup frens I have a DHT protocol now: www.iroh.computer/blog/lets-wr...
A DHT for iroh - Part 1, The Protocol
Let's write a DHT for iroh
www.iroh.computer
September 29, 2025 at 2:10 PM
Sup frens I have a DHT protocol now: www.iroh.computer/blog/lets-wr...
Reposted by Thibault
"Lack of scalability is enough for Cloudflare to disqualify QKD outright: if a technology can’t bring security to the whole Internet, we’re not going to spend much time on it."
blog.cloudflare.com/you-dont-nee...
blog.cloudflare.com/you-dont-nee...
You don’t need quantum hardware for post-quantum security
Post-quantum cryptography protects against quantum threats using today’s hardware. Quantum tech like QKD may sound appealing, but it isn’t necessary or sufficient to secure organizations.
blog.cloudflare.com
September 19, 2025 at 2:28 PM
"Lack of scalability is enough for Cloudflare to disqualify QKD outright: if a technology can’t bring security to the whole Internet, we’re not going to spend much time on it."
blog.cloudflare.com/you-dont-nee...
blog.cloudflare.com/you-dont-nee...
Reposted by Thibault
Hosting a website on a disposable vape bogdanthegeek.github.io/blog/project...
Hosting a WebSite on a Disposable Vape
Someone's trash is another person's web server.
bogdanthegeek.github.io
September 15, 2025 at 1:06 PM
Hosting a website on a disposable vape bogdanthegeek.github.io/blog/project...
Reposted by Thibault
CPU revient sur @radiofmr.bsky.social , podcast (sauf spautifaïlle) et à la demande sur cpu.pm
Nous enregistrons Mercredi prochain à 19h au Tetalab (96 bis rue Bourbaki, métro Nougaro, Toulouse). Si vous souhaitez nous poser une question, faites le via cpu.dascritch.net/pages/Prendr...
Nous enregistrons Mercredi prochain à 19h au Tetalab (96 bis rue Bourbaki, métro Nougaro, Toulouse). Si vous souhaitez nous poser une question, faites le via cpu.dascritch.net/pages/Prendr...
Prendre contact avec nous par e-mail
Envie de nous remercier ? De subventionner une coupe de cheveux à Eugène Lawn ? De laisser un message dans le futur à Solarus ? D'insulter ? C'est facile : Laissez un message en
cpu.dascritch.net
September 12, 2025 at 9:36 AM
CPU revient sur @radiofmr.bsky.social , podcast (sauf spautifaïlle) et à la demande sur cpu.pm
Nous enregistrons Mercredi prochain à 19h au Tetalab (96 bis rue Bourbaki, métro Nougaro, Toulouse). Si vous souhaitez nous poser une question, faites le via cpu.dascritch.net/pages/Prendr...
Nous enregistrons Mercredi prochain à 19h au Tetalab (96 bis rue Bourbaki, métro Nougaro, Toulouse). Si vous souhaitez nous poser une question, faites le via cpu.dascritch.net/pages/Prendr...
Reposted by Thibault
Nous revenons bientôt à l'antenne de @radiofmr.bsky.social , en podcast sur toutes les plateformes honnêtes et à la ré-écoute sur notre site cpu.pm .
Et en attendant, savez-vous que nous avons fait une émission sur les… trains ? cpu.pm/0195
Et en attendant, savez-vous que nous avons fait une émission sur les… trains ? cpu.pm/0195
Ex0195 Trains
Dans cette release : Deux rails, des roues, une locomotive, et tout roule ! Nous recevons Jérôme Monamy, chef circulation à la SNCF Chapitres : Bonjour à toi, Enfant du Futur
cpu.pm
September 5, 2025 at 8:48 AM
Nous revenons bientôt à l'antenne de @radiofmr.bsky.social , en podcast sur toutes les plateformes honnêtes et à la ré-écoute sur notre site cpu.pm .
Et en attendant, savez-vous que nous avons fait une émission sur les… trains ? cpu.pm/0195
Et en attendant, savez-vous que nous avons fait une émission sur les… trains ? cpu.pm/0195
Reposted by Thibault
Unauthorized TLS certificates were issued for 1.1.1.1 by a Certification Authority without permission from Cloudflare. These rogue certificates have now been revoked. Read our blog to see how this could affect you. https://cfl.re/47y9JqV
Addressing the unauthorized issuance of multiple TLS certificates for 1.1.1.1
Unauthorized TLS certificates were issued for 1.1.1.1 by a Certification Authority without permission from Cloudflare. These rogue certificates have now been revoked. Read our blog to see how this cou...
cfl.re
September 4, 2025 at 4:55 PM
Unauthorized TLS certificates were issued for 1.1.1.1 by a Certification Authority without permission from Cloudflare. These rogue certificates have now been revoked. Read our blog to see how this could affect you. https://cfl.re/47y9JqV
Reposted by Thibault
Les "lava lamp" utilisés par Cloudflare pour produire de l'aléatoire vraiment aléatoire : comment ça marche ? On a la chance d'avoir @thibmeu.com à Toulouse qui bosse sur le sujet et va nous expliquer ça en septembre ! www.meetup.com/fr-FR/gdg-to...
Soirée lampes à lave et Intro Cloud Run, jeu. 18 sept. 2025, 18:30 | Meetup
Bienvenue à cette nouvelle édition des meetups GDG Toulouse !
Comme d'habitude, les présentations seront disponibles sur notre chaine Youtube !
Par contre en video il n'y a
www.meetup.com
August 26, 2025 at 12:51 PM
Les "lava lamp" utilisés par Cloudflare pour produire de l'aléatoire vraiment aléatoire : comment ça marche ? On a la chance d'avoir @thibmeu.com à Toulouse qui bosse sur le sujet et va nous expliquer ça en septembre ! www.meetup.com/fr-FR/gdg-to...
Privacy doesn't have to be slow. Great work from the team to improve the speed of Privacy Pass double spend checks. Now below 1ms
We significantly sped up our privacy proxy service by fixing a 40ms delay in "double-spend" checks. The issue stemmed from how Nagle's algorithm and delayed ACKs interacted with a third-party dependency. blog.cloudflare.com/reducing-dou...
Reducing double spend latency from 40 ms to < 1 ms on privacy proxy
We significantly sped up our privacy proxy service by fixing a 40ms delay in
blog.cloudflare.com
August 5, 2025 at 1:15 PM
Privacy doesn't have to be slow. Great work from the team to improve the speed of Privacy Pass double spend checks. Now below 1ms
Reposted by Thibault
Reposted by Thibault
Bots can start authenticating to Cloudflare using public key cryptography, preventing them from being spoofed and allowing origins to have confidence in their identity. blog.cloudflare.com/verified-bot...
Message Signatures are now part of our Verified Bots Program, simplifying bot authentication
Bots can start authenticating to Cloudflare using public key cryptography, preventing them from being spoofed and allowing origins to have confidence in their identity.
blog.cloudflare.com
July 1, 2025 at 12:16 PM
Bots can start authenticating to Cloudflare using public key cryptography, preventing them from being spoofed and allowing origins to have confidence in their identity. blog.cloudflare.com/verified-bot...
Making an end to end encrypted video calling app is easy. Just subscribe to @cloudflare.social blog, read MLS RFC, and write TLA+.
Then enjoy the demo at e2ee.orange.cloudflare.dev
Then enjoy the demo at e2ee.orange.cloudflare.dev
Orange Meets, our open-source video calling web application, now supports end-to-end encryption using the MLS protocol with continuous group key agreement.
Orange Me2eets: We made an end-to-end encrypted video calling app and it was easy
Orange Meets, our open-source video calling web application, now supports end-to-end encryption using the MLS protocol with continuous group key agreement
blog.cloudflare.com
June 26, 2025 at 1:49 PM
Making an end to end encrypted video calling app is easy. Just subscribe to @cloudflare.social blog, read MLS RFC, and write TLA+.
Then enjoy the demo at e2ee.orange.cloudflare.dev
Then enjoy the demo at e2ee.orange.cloudflare.dev