Also, interesting comment I found on HackerNews (HN):

This post was definitely demoted by HN. It stayed in the first position for less than 5 minutes and, as it quickly gathered upvotes, it jumped straight into 24th and quickly fell off the first page as it got 200 or so more points in less than an hour.

I’m 80% confident HN tried to hide this link. It’s the fastest downhill I’ve noticed on here, and I’ve been lurking and commenting for longer than 10 years.

  • Tramort@programming.dev
    link
    fedilink
    English
    arrow-up
    196
    arrow-down
    23
    ·
    7 months ago

    Jesus. Something shady is happening with cloudflare.

    That does not inspire confidence.

    • Vlyn@lemmy.zip
      link
      fedilink
      English
      arrow-up
      172
      arrow-down
      28
      ·
      edit-2
      7 months ago

      Is there? The casino is on a cheap $250 a month plan they don’t belong on and they broke ToS with the domains. While also costing Cloudflare money each month (as the casino admits themselves, their traffic alone is worth up to $2000 a month).

      It’s absolutely in the right of Cloudflare to drop a customer that’s bothersome. Casinos usually are (regulations, going around country restrictions), them costing them money on top is a massive issue.

      120k a year is a big slap of course, but it’s probably the amount Cloudflare would want to keep them on as a customer. If they leave, so be it.

      I’ve seen it several times before at companies I worked at. They cheaped out and went with a tiny service plan to coast by. Or even broke ToS because it would be cheaper. That usually got stopped by plans getting dropped (GitLab Bronze for example), cheap plans getting limited, or the sales team sending a ‘friendly’ message that we’re abusing their plan and how we’re going to fix it. If you don’t play along at that point you’re going to get the hammer dropped on you.

      It also wasn’t 24h as the title says, the first communication happened in April. At that point they should have started to scramble, either upgrading to a bigger tier immediately or switching providers. And it’s totally normal to go to the sales team when you break the ToS of your plan or you abuse a smaller plan. They’re going to discuss terms, it’s not a technical issue.

      Edit: And I should also say, the whole “paying for a whole year is extortion” is bullshit too. Their CFO or CEO told Cloudflare they are looking at switching providers (as they looked at Fastly). So of fucking course Cloudflare is going to demand a full year upfront. Otherwise the casino could pay for a single month and during that month they switch away to another provider. So Cloudflare would still be thousands in the red with that ex-customer after they used so much traffic the last few years.

      • tiramichu@lemm.ee
        link
        fedilink
        English
        arrow-up
        81
        arrow-down
        4
        ·
        edit-2
        7 months ago

        That Cloudflare were justifiably unhappy with the situation and wanted to take action is fine.

        What’s not fine is how they approached that problem.

        In my opinion, the right thing for Cloudflare to do would have been to have an open and honest conversation and set clear expectations and dates.

        Example:

        "We have recently conducted a review of your account and found your usage pattern far exceeds the expected levels for your plan. This usage is not sustainable for us, and to continue to provide you with service we must move you to plan x at a cost of y.

        If no agreement is reached by [date x] your service will be suspended on [date y]."

        Clear deadlines and clear expectations. Doesn’t that sound a lot better than giving someone the run-around, and then childishly pulling the plug when a competitor’s name is mentioned?

        • realbadat@programming.dev
          link
          fedilink
          English
          arrow-up
          52
          arrow-down
          2
          ·
          7 months ago

          Considering the perspective of the poster, the misleading title, etc - are you actually sure they didn’t?

          • QuaternionsRock@lemmy.world
            link
            fedilink
            English
            arrow-up
            6
            arrow-down
            3
            ·
            7 months ago

            Until Cloudflare responds to the post, it is IMO most beneficial to assume that the OP is being truthful and forthright. Doing so puts pressure on Cloudflare to either clarify or rectify the situation, whereas treating Cloudflare as though they are above suspicion accomplishes nothing.

            After all, OP is very much the little guy here.

            • realbadat@programming.dev
              link
              fedilink
              English
              arrow-up
              11
              arrow-down
              2
              ·
              edit-2
              7 months ago

              Eh, I have a couple of issues with that. For one, I doubt CF would even respond to this. I could easily see them using this very writeup to sue, with all the admissions in it.

              The bigger part though, is calling an online casino, whose own IT team (the writer) admitted they were knowingly abusing the plan they were on, the “little guy”.

              Are they small in comparison to Cloudflare? Absolutely, those schmucks have way too much control of the internet. Calling an online casino, whose own staff lied in the title, the little guy though… Doesn’t sit right with me.

              No, I’m not going to side with them, or with CF. I’m going to make my assumptions off what I know (two terrible companies, one of which has a liar writing an article where they pretend to not have admittted to their own lies about the subject), and I’m going to assume this:

              • Terrible casino used a plan they know they shouldn’t have been on.
              • Terrible casino would have known what their traffic looked like for a long time.
              • Awful CF noticed, and said “Hey guys, wrong plan, talk to sales.”
              • Terrible casino threatened to just leave awfuo CF.
              • Awful CF demands a year up front to ensure their costs are covered for previous abuse of the TOS.
              • Awful CF figures “screw it, they are stringing us along, just cut them off so we don’t spend more money. TOS violation makes it easy.”
              • Idiot IT from terrible online casino writes an article (stupidly) in which they admit to TOS violations, and pretends not to know about their own traffic from a resource they are relying on.

              Seems pretty obvious to me. Barring further details, my assumptions are based on what I know, and I am perfectly happy sticking to that.

              You do you.

        • Vlyn@lemmy.zip
          link
          fedilink
          English
          arrow-up
          19
          arrow-down
          1
          ·
          7 months ago

          From the additional info I read, it sounds more like the traffic wasn’t the main issue.

          Gambling is forbidden in a lot of countries or heavily regulated. Cloudflare uses a common IP pool for all customers, so a casino customer would possibly get their IPs blacklisted (by various ISPs). The Enterprise tier of Cloudflare has “Bring your own IP (ByoIP)”, which they probably wanted to force onto this problematic customer to protect their business.

          So it’s actually a problem, not just them paying not enough (which is another reason to get rid of them as fast as possible).

      • Cryophilia@lemmy.world
        link
        fedilink
        English
        arrow-up
        43
        arrow-down
        3
        ·
        7 months ago

        The first communications were intentionally misleading though. CF wasn’t trying to solve a problem, they were trying to sell a service. If CF had just led with “upgrade or we nuke your site” then that’s scummy, but fair. Leading these guys on about technical problems and “trust & safety” bullshit was not fair at all.

        • Vlyn@lemmy.zip
          link
          fedilink
          English
          arrow-up
          11
          arrow-down
          1
          ·
          7 months ago

          There were 3 issues at once, so “trust & safety” is definitely part of it.

          1. Too much traffic use, this is purely a billing issue and CF probably wouldn’t even care (they haven’t for years) despite losing money
          2. Violating ToS with the domains, a minor infraction probably, but enough to cancel the contract
          3. This is the big one: CF uses one pool of IPs for all customers, the IP of a gambling site (like a casino) will get banned by ISPs of various countries (Gambling being illegal, strictly regulated and so on). This is the trust & safety issue, CF is actively hurting by keeping this customer. The enterprise plan they want to push them to has ByoIP (Bring your own IP), which would probably have been one condition of keeping them on. CF could have communicated better (if we got the full story here…), but for $250 a month they’d much rather kick the customer off their service
        • Randelung@lemmy.world
          cake
          link
          fedilink
          English
          arrow-up
          4
          ·
          7 months ago

          And understandably you wouldn’t switch plans if all you’re talking to is sales without context.

    • slaacaa@lemmy.world
      link
      fedilink
      English
      arrow-up
      130
      arrow-down
      12
      ·
      edit-2
      7 months ago

      The biggest red flag is the up-front payment for a year, gives the indication that they are in actual financial trouble, meaning short in cash right now.

      Fucking idiots could have been just increasing the price yearly without any resistance, it’s unlikely a big casino would care about an extra 50-100 per month.

      • Vlyn@lemmy.zip
        link
        fedilink
        English
        arrow-up
        35
        arrow-down
        18
        ·
        7 months ago

        As I said in another comment: The up-front payment is the only thing that makes sense for Cloudflare. You got a customer that’s costing you money each month. They broke ToS. You offer them a deal still to keep the services running. And their CEO/CFO tells you they are looking at other providers like Fastly.

        If Cloudflare gave them a monthly contract then the casino would simply pay for a month and switch over their services to a competitor in that time. So Cloudflare loses all the money from the past (where the casino used far too much traffic) and will barely recoup 10k (minus the running cost, so more likely 7k at the high end) for a single month. It’s just not worth it.

        So they offer: Stick with us for a full year at least or get fucked. Which is fair.

        • Nefara@lemmy.world
          link
          fedilink
          English
          arrow-up
          17
          ·
          7 months ago

          This scenario would mean major negligence on their part, as they had been with Cloudflare for years. When it was clear their services were costing more than the business plan paid for, that’s when they should have been contacted with clear numbers and a sheepish admission that “unlimited” doesn’t actually mean unlimited. It certainly seems shady to me that they attempted to make it about a TOS violation, that there’s no public information about enterprise level and pricing, and that the second they said they were talking to a competitor they had their data purged. It sounds like a failed attempt at extortion to me.

          • brbposting@sh.itjust.works
            link
            fedilink
            English
            arrow-up
            11
            arrow-down
            2
            ·
            7 months ago

            Read to me as:

            Look, for a ToS-breaking [and/or] legally questionable site, we need a LOT to make it worth our while given we could be named as co-defendants someday - and obviously we’re not saying [cough] you’re a sketchy business we don’t want, because if we said that then we shouldn’t take bribes and should cancel you no matter what, so please read in between the lines.

        • qaz@lemmy.world
          link
          fedilink
          English
          arrow-up
          7
          ·
          7 months ago

          I don’t think I particularly agree with this take, but it’s an interesting perspective.

        • sudneo@lemm.ee
          link
          fedilink
          English
          arrow-up
          7
          arrow-down
          1
          ·
          7 months ago

          If you are cloudflare and you suspect they broke ToS you quote which ToS has been broken, you specify which country blocking the customer is trying or has tried to circumvent and you force the customer to either move away or enforce geo-blocking for those countries (or have a separate account for those with your own IPs). There is no reason to cancel the whole account if the blocking is country-specific and there is no way that 10k a month is anyway a sufficient benefit for cloudflare for their IPs to be blocked in a country (affecting potentially hundreds or thousand of customers).

      • Trainguyrom@reddthat.com
        link
        fedilink
        English
        arrow-up
        3
        ·
        7 months ago

        The biggest red flag is the up-front payment for a year

        Another comment pointed out this was probably to prevent them from signing up for a month then using that month to bounce to another provider

      • Goodie@lemmy.world
        link
        fedilink
        English
        arrow-up
        3
        arrow-down
        2
        ·
        7 months ago

        I think it’s far more likely there’s some sales goal and or performance indicator at play here.

    • HowManyNimons@lemmy.world
      link
      fedilink
      English
      arrow-up
      24
      arrow-down
      44
      ·
      7 months ago

      CloudFlare don’t need to subsidise an online casino with millions of subscribers, at everyone else’s expense. Sure CF are a bunch of gigglefucks but this time I think they made a good decision.

      • xxd@discuss.tchncs.de
        link
        fedilink
        English
        arrow-up
        52
        arrow-down
        9
        ·
        edit-2
        7 months ago

        Unless the casino is doing something illegal, it’s really not their decision to make. If they don’t want to subsidize them, all they’d have to do is be transparent and fair in their pricing. They way CF handled it instead just seems unprofessional and deceitful.

        • Tramort@programming.dev
          link
          fedilink
          English
          arrow-up
          6
          arrow-down
          1
          ·
          7 months ago

          Exactly right.

          If they are somehow losing money routing traffic then their pricing is fundamentally wrong, which is just as big of a black eye for cloudflare.

      • catloaf@lemm.ee
        link
        fedilink
        English
        arrow-up
        40
        arrow-down
        4
        ·
        7 months ago

        Now they’re getting $0 and bad press, so no I don’t think they did.

        • HowManyNimons@lemmy.world
          link
          fedilink
          English
          arrow-up
          24
          arrow-down
          22
          ·
          7 months ago

          $0 is better than having a customer whose costs exceed their revenue; it looks like the bad press is being managed; and also fuck online casinos very much.

          • FederatedSaint@lemmy.world
            link
            fedilink
            English
            arrow-up
            34
            arrow-down
            9
            ·
            7 months ago

            Just because you don’t like online casinos, doesn’t mean cloudflare didn’t completely fuck this up. They could have negotiated reasonable terms to increase their revenue on this account instead of going the route of stonewalling and extortion.

            So not only did they lose this customer, but this bad press will ensure a lot of others never sign up with them, potentially costing them millions in foregone sales.

            Yeah this was a massive boondoggle…

              • FederatedSaint@lemmy.world
                link
                fedilink
                English
                arrow-up
                7
                arrow-down
                1
                ·
                7 months ago

                If they’re charging $120,000 per client, it only takes 17 potential lost customers to constitute “millions.” It’s realistic that at least 17 companies might be put-off with the way this was handled.

      • TheEntity@lemmy.world
        link
        fedilink
        English
        arrow-up
        23
        arrow-down
        3
        ·
        7 months ago

        Subsidise how? They were using their existing plan as intended and even willing ditch the grey-area parts. If CF cannot afford to offer their plans as they are, they should change the offered plans, not hunt for easy prey.

        • HowManyNimons@lemmy.world
          link
          fedilink
          English
          arrow-up
          10
          arrow-down
          20
          ·
          7 months ago

          Clearly CF were losing money on this account, so their other customers were subsidising.

          Ah fuck it, I’m clearly at the bottom of a dog pile here, and I don’t want to be friends with any of you, nor am I going to start thinking that an online casino deserves anything but contempt, so I’ll be off.

          • FederatedSaint@lemmy.world
            link
            fedilink
            English
            arrow-up
            10
            arrow-down
            1
            ·
            7 months ago

            No no, you’re really not far off. Few, if any people here are advocating for CF to continue to provide the same services for the same price. It seems clear to most (including the author) that a price increase was justified. The problem we’re all having is how they went about it, agnostic of the client.

            (I don’t care who the client was and don’t care one way or the other about online casinos.)

      • Tramort@programming.dev
        link
        fedilink
        English
        arrow-up
        23
        arrow-down
        4
        ·
        7 months ago

        I read the post and it doesn’t sound abusive at all

        Plus: cloudflare kept putting them in touch with the sales department. Not legal. Not technical support

        It’s just shit customer service, even if the customer is making a ton of money compared to your fees. Should a casino pay more for other services, too, just because they" don’t need a subsidy"?

      • raspberriesareyummy@lemmy.world
        link
        fedilink
        English
        arrow-up
        4
        arrow-down
        2
        ·
        7 months ago

        It’s not the decision to ask more money, it’s how they made it and in violation of their own terms of service, also extortion, so yes they are dipshits.