As far as proxy cache systems go, they had their day but that was long
ago. For the small business or organization on the end of a slow or
high-latency link they can still be useful, but not at the provider levels.
I don't know of any ISPs of any size still supporting proxy cache
system, optional or forced...If nothing else, scaling them to a multiple
of 10Gbit throughput is just too expensive to make them worthwhile.
DenaliCS ran a opt-in proxy cache back in the day, but ACS never has.
Security on the internet...It is a public network, always assume you are
shouting in a public place and take approp measures.
Far as the operation of CDN boxes (Content Engines, Caching Engines,
whatever), they are not proxy cache systems, not that I have ever seen.
All of the CDN systems I have ever seen, at current employer and before
are for all practical purposes... _Co-located servers_... Take ahalf
rack to a full rack of high perf servers, install in data center and
give them a large internet connection no different than a std commercial
connection...Thats it.
All of the "magic" is in the content providers systems, how they decide
what content to load on each system, how they send users to the
closed/best one, etc.
G for example... They make all sorts of internal choices about what
services and content live on what server. They happen to have tens of
thousands of servers located in G data centers in batches running into
the hundreds... They also happen to have them in groups of 16 or so
scattered around...a bit closer to the customer.
Same thing with the others.
End of the day, each is just a set of server systems on a private subnet
and a fat pipe... The CDN gets to special access or visability of the
providers traffic and the provider gets no special access to the CDN
networks operations or info.
On 10/17/13 10:52 AM, Shane Spencer wrote:
> So I've been wanting to offer caching solutions to the major ISPs around
> here lately for obvious reasons and I'm happy they are here.. no buts.
>
> I think it's great that ACS is onboard with something google can use to
> provide us better service. I'd love to know that at the core of it
> theres a super futuristic compressed SCTP based SPDY aware load balancer
> connecting the dots for me to access googles service and helping reroute
> the dots in case of problems in the googleverse.
>
> If they can cache queries that would be amazing.. since they are mostly
> tailored. If they are being cached that means there are descriptive
> orientations for taylored content (I'd love to know if I'm described as
> 'that man beast that searches for linux stuff a lot').
>
> Biggest concern I have is that I've done far too much SSL MITM work. I
> use evil, stupid, insecure techniques with production stuffs in order to
> allow better quality on the backend by reducing security a smidge.. like
> using SSL load balancers that forward to non-SSL ports on application
> servers.. such is life.
>
> If there's any path for ISP employees to plug in a network cable and
> fiddle a monitor port to see unencrypted googledatas then please let me
> know.
>
> - Shane
>
>
> On Thu, Oct 17, 2013 at 7:22 AM, Royce Williams <royce@tycho.org
> <mailto:royce@tycho.org>> wrote:
>
> Minor correction:
>
> On Thu, Oct 17, 2013 at 5:27 AM, Royce Williams <royce@tycho.org
> <mailto:royce@tycho.org>> wrote:
>
> [snip]
>
> > Target knows you're pregnant before you do:
> >
> >
> http://www.forbes.com/sites/kashmirhill/2012/02/16/how-target-figured-out-a-teen-girl-was-pregnant-before-her-father-did/
>
> Actually, this was supposed to be "Target knows that *your daughter*
> is pregnant before you do."
>
> That being said, since people's buying habits are deeply tied to
> unconscious processes, I wouldn't be surprised if you could conclude
> things about people that they themselves don't know (or don't want to
> admit to themselves). :-)
>
> I also believe that search-engine reach is more broad than actual
> purchase tracking because searches reveal what you want and/or are
> curious about, not just what you actually buy and do.
>
> And in a world where law enforcement is (understandably) desperate for
> correlation, if it just so happens that all terrorists eat bananas,
> you'd better keep your lunch in a Faraday bag. Especially if you're
> *not* a terrorist.
>
> Royce
> ---------
> To unsubscribe, send email to <aklug-request@aklug.org
> <mailto:aklug-request@aklug.org>>
> with 'unsubscribe' in the message body.
>
>
---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Fri Oct 18 23:02:07 2013
This archive was generated by hypermail 2.1.8 : Fri Oct 18 2013 - 23:02:07 AKDT