Re: Technical committee acting in gross violation of the Debian constitution

To: debian-devel@lists.debian.org
Subject: Re: Technical committee acting in gross violation of the Debian constitution
From: Matthias Urlichs <matthias@urlichs.de>
Date: Thu, 4 Dec 2014 21:55:43 +0100
Message-id: <[🔎] 20141204205543.GT6563@smurf.noris.de>
In-reply-to: <[🔎] 20141204201436.GA1605@bongo.bofh.it>
References: <CAKTje6ECfcV=F5Qou3OJXNTqN23u6Hv9OHyYxhAarmy5SjFtWA@mail.gmail.com> <201411262329.26670.envite@rolamasao.org> <87zjbd33to.fsf@hope.eyrie.org> <1417047554.17080.2.camel@kagura.malsain.org> <E1Xu5h6-0007GZ-6S@swivel.zugschlus.de> <877fyg8emt.fsf@vostro.rath.org> <E1XuPus-0002za-AR@swivel.zugschlus.de> <1417198186.4622.4.camel@scientia.net> <[🔎] 20141204160325.GS6563@smurf.noris.de> <[🔎] 20141204201436.GA1605@bongo.bofh.it>

Hi,

Marco d'Itri:
> On Dec 04, Matthias Urlichs <matthias@urlichs.de> wrote:
> 
> > If you can run a CGI inside a chroot/container/whatever, you can run a
> > small web server on a local port / Unix socket, and reverse-proxy it,
> > just as easily.
> While using many more times the resources.

Which "many more" are you talking about? Setting up a chroot and starting
an external program has the same cost. Thus, a CGI script is more expensive
than a FastCGI process or a small web app (Python Flask or whatever) as
soon as the second request for a resource it serves arrives.

> You obviously have no idea of the challenges of providing secure web
> hosting for non-trivial quantities of web sites.

You obviously assume that the users' app servers need to actually
run before they're able to serve requests.

This assumption is incorrect.

I start the app server and its container via socket activation. (In most
cases, unfortunately, this is a simple php5-fpm server.) I then stop it
after a few seconds of inactivity (or with an LRU list, based on how much
server memory is left). Problem solved.

… at least in principle; socket activation still isn't exactly common,
so this solution still requires a couple of hacks to work, and I really
should submit some patches. :-/  But it works.

-- 
-- Matthias Urlichs

Reply to:

References:
- Re: Technical committee acting in gross violation of the Debian constitution
  - From: Matthias Urlichs <matthias@urlichs.de>
- Re: Technical committee acting in gross violation of the Debian constitution
  - From: md@Linux.IT (Marco d'Itri)

Prev by Date: Re: Technical committee acting in gross violation of the Debian constitution
Next by Date: Re: Please respect Freeze Policy
Previous by thread: Re: Technical committee acting in gross violation of the Debian constitution
Next by thread: Re: Technical committee acting in gross violation of the Debian constitution
Index(es):
- Date
- Thread