Re: Technical committee acting in gross violation of the Debian constitution

To: debian-devel@lists.debian.org
Subject: Re: Technical committee acting in gross violation of the Debian constitution
From: Roland Mas <lolando@debian.org>
Date: Fri, 05 Dec 2014 09:47:56 +0100
Message-id: <[🔎] 87ppbyo537.fsf@placard.fr.eu.org>
In-reply-to: <[🔎] 20141204225858.GA13039@bongo.bofh.it> (Marco d'Itri's message of "Thu, 4 Dec 2014 23:58:58 +0100")
References: <201411262329.26670.envite@rolamasao.org> <87zjbd33to.fsf@hope.eyrie.org> <1417047554.17080.2.camel@kagura.malsain.org> <E1Xu5h6-0007GZ-6S@swivel.zugschlus.de> <877fyg8emt.fsf@vostro.rath.org> <E1XuPus-0002za-AR@swivel.zugschlus.de> <1417198186.4622.4.camel@scientia.net> <[🔎] 20141204160325.GS6563@smurf.noris.de> <[🔎] 20141204201436.GA1605@bongo.bofh.it> <[🔎] 1417728195.4457.10.camel@scientia.net> <[🔎] 20141204225858.GA13039@bongo.bofh.it>

Marco d'Itri, 2014-12-04 23:58:58 +0100 :

> On Dec 04, Christoph Anton Mitterer <calestyo@scientia.net> wrote:
>
>> > While using many more times the resources. You obviously have no idea of 
>> > the challenges of providing secure web hosting for non-trivial 
>> > quantities of web sites.
>> So what do you want to imply would be secure?
> The point is not just "secure", but "secure and scalable".
> And sadly the only good solution that fits this criteria is php-cgi with
> some kind of uid-changing wrapper.

  There's also libapache2-mpm-itk, which works just fine with PHP.

[...]

>> > FastCGI is another thing that almost nobody can afford when hosting 
>> > a significant number of web sites.
>> Why not?
> Because RAM is expensive and you cannot keep tens or even thousands of 
> fastcgi processes around waiting for a request.

  MPM-ITK does the setuid based on the request, so you get a (small)
performance penalty but you keep a reasonable number of processes
waiting for requests.

Roland.
-- 
Roland Mas

You can tune a filesystem, but you can't tuna fish.
  -- in the tunefs(8) manual page.

Reply to:

References:
- Re: Technical committee acting in gross violation of the Debian constitution
  - From: Matthias Urlichs <matthias@urlichs.de>
- Re: Technical committee acting in gross violation of the Debian constitution
  - From: md@Linux.IT (Marco d'Itri)
- Re: Technical committee acting in gross violation of the Debian constitution
  - From: Christoph Anton Mitterer <calestyo@scientia.net>
- Re: Technical committee acting in gross violation of the Debian constitution
  - From: md@Linux.IT (Marco d'Itri)

Prev by Date: Re: Technical committee acting in gross violation of the Debian constitution
Next by Date: Re: curl and certificate verification in jessie
Previous by thread: Re: Technical committee acting in gross violation of the Debian constitution
Next by thread: Re: Technical committee acting in gross violation of the Debian constitution
Index(es):
- Date
- Thread