ddos attack blog

• Previous message (by thread): ddos attack blog
• Next message (by thread): internet peering conferences in Asia Pacific
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2/14/14, 3:00 PM, Hal Murray wrote:
> 
>> I was being a bit extreme, I don't expect UDP to be blocked and there  are
>> valid uses for NTP and it needs to pass. Can you imagine the trading
>> servers not having access to NTP? 
> 
> Sure.
> 
> They could setup internal NTP servers listening to GPS.  Would it be as good 
> overall as using external servers?   Probably not, but it might be good 
> enough.  I doubt if it would be very high on any trading floors list of nasty 
> problems.
> 
> They could arrange to poke holes through the generic UDP block - whitelist 
> the few known cases where UDP traffic is expected.  Would it be a pain to 
> administer?  Probably, but I'll bet it could be made to work.

High value concentrated applications are relatively easy things to get
high quality time to.

it's all the consumer electronics devices and everything that uses
ssl/tls that needs access to time that is a more diffuse and less
tractable problem.

joel

> 


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 308 bytes
Desc: OpenPGP digital signature
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20140214/73c7ed7b/attachment.sig>

• Previous message (by thread): ddos attack blog
• Next message (by thread): internet peering conferences in Asia Pacific
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]