Iceweasel causes very high load and IO usage on thin-client-servers
On bruker@skolelinux, Alf-Tonny reports that a problem with iceweasel
in Lenny, where users logging in bring the server IO to its knees.
Klaus Ade report that the problem also exist on Squeeze.
The problem is cuased by the malware and safebrowsing detection code
in Iceweasel, and a workaround is to disable these features. We could
do this globally in debian-edu-config using the following patch, but
as these are security features I am not sure if we should do it.
Any views on this? Anyone got more information on this bug?
<URL: http://thread.gmane.org/gmane.linux.skolelinux.bruker/9251 >
got the thread on bruker@.
Index: debian/changelog
===================================================================
--- debian/changelog (revision 72714)
+++ debian/changelog (working copy)
@@ -8,6 +8,9 @@
information, and prefer this over the disappearing xresprobe.
* Fix incorrect shell test in dhclient-exit-hooks.d scripts (Closes:
#610841).
+ * Disable browser.safebrowsing.malware.enabled and
+ browser.safebrowsing.enabled in Iceweasel, to avoid excessive I/O
+ on the home directory server when several users log in.
[ Andreas B. Mundt ]
* Switch on NFS4 (sec=sys) for mounting the home directories with the
Index: share/iceweasel/defaults/preferences/debian-edu.js
===================================================================
--- share/iceweasel/defaults/preferences/debian-edu.js (revision 72713)
+++ share/iceweasel/defaults/preferences/debian-edu.js (working copy)
@@ -16,3 +16,9 @@
// Mailto settings
pref("network.protocol-handler.app.mailto", "icedove");
+
+// Disable malware detection to avoid heavy I/O during login.
+// Should be disabled when BTS #? is fixed.
+// http://www.debianhelp.org/node/14453
+pref("browser.safebrowsing.malware.enabled", false);
+pref("browser.safebrowsing.enabled", false);
Happy hacking,
--
Petter Reinholdtsen
Reply to: