Timing attacks?
Why not modify web browsers to reduce and randomise the time-measuring functions available to any script?
I mean, when does a web page really need microsecond resolution? If the timing is jittered by a millisecond or so by some pseudo-ransom process would it really break stuff that is talking to the web server via a TCP/IP link with delays typically of the order of 10s of milliseconds?
Biting the hand that feeds IT
