I assume we can then count the days until they simply block AWS as well? But that explains why they don't use one of these to keep the bad traffic away from their hosting infrastructure and instead of AWS eat all of it.

AWS does not work in China. Tons of EC2 blocked. Rest are just too slow to connect (like >400ms pings)

Very few S3 CDN IP address left with 443 port open, so greatfire.org carefully picked those and hosting content mirrors there.

Although what they operate is totally free speech, legal and reasonable, but it's like your bad neighbor in a VPS who eats all your co-hosting CPU, bandwidth and disk IO. You have no choice but move to somewhere else.

Probably they're going to bash DDoS protection providers there in the future, who knows. ;-)

I think a lot of people already did this (including me) and they're probably flooded with offers. Thanks for the support though, I'm sure they're happy about any they get. It's about time to demolish the great firewall of China. :-)

What is your opinion on Google's move about counting HTTPS as a ranking signal? Do you support encryption of HTTP traffic, even on none-sensitive websites?

Is anyone else getting the same news?

It contains quite useful info on how to block DDoS on software level. If you want to use a software solution, you'll find plenty of documentation about the approaches mentioned in this article. Obviously it's not a step-by-step tutorial.