OoO En cette soirée bien amorcée du samedi 30 juillet 2011, vers 22:42,
Peter Samuelson <peter@p12n.org> disait :
>> stud is a network proxy that terminates TLS/SSL connections and
>> forwards the unencrypted traffic to some backend. It is designed to
>> handle tens of thousands of connections efficiently on multicore
>> machines.
> You should include some text to differentiate this from stunnel4. From
> the ITP, I cannot figure out why I would want this instead, or indeed,
> why Debian should ship both.
The main difference is that stud "handles tens of thousands of
connections efficiently on multicore machines". stunnel is not able to
get similar performance due to its threaded model. Moreover, stud is
really small (ten times smaller than stunnel) which may be important
From a security point of view.
I hope to backup those claims with some figures soon.
--
Vincent Bernat ☯ http://vincent.bernat.im
Don't compare floating point numbers just for equality.
- The Elements of Programming Style (Kernighan & Plauger)
Attachment:
pgpJIV7u8K8U_.pgp
Description: PGP signature