[john_strinlai]

>You cannot host user content without being required to police it for at a minimum things like child porn.

yes, child sexual abuse material is covered by law, i.e. they already have a lawful obligation for that thus do not require a separate lawful order.

the issue is around arbitrary content-policing, where the decision is made by cloudflare rather than the legal apparatus.

having a website that says you do ddos for hire is not illegal. (doing the ddos is the illegal part. but that was not done with cloudflare infrastructure = cloudflare should not be involved unless they receive a lawful order).

i am going to choose to ignore your additional mischaracterizations and insults. it would super cool of you to stop calling me ignorant, an astroturfer for ddos, etc. over a simple disagreement.

[FireBeyond]

Yeah, there's a huge big hole you're ignoring:

That 18 USC 2 and 371 apply to the CFAA, too. What are those? Accomplice liability, which has been considered to include aiding and abetting. Hosting (and protecting, by virtue of your product) computer crime organizations could quite plausibly be rolled into accomplice liability.

[john_strinlai]

cloudflare has no knowledge that <random site> is linked to <random attack on a completely different company, originating from random places on the internet> and they have no way of gaining that knowledge unless presented with a lawful order stating such.

if what you were saying was at all a plausible legal interpretation, it would have been brought to light over the last 16 years of lawsuits cloudflare has been involved in. or it would have been brought up by their literal room full of (actual) on-staff lawyers.

aiding and abetting requires knowledge of the crime and intent to facilitate it. cloudflare has neither.