Re: FastCGI daemon

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: FastCGI daemon
From: Stefan <stefan@...>
Date: Fri, 23 Oct 2009 10:20:09 -0700

Bertrand Mansion wrote:

On Fri, Oct 23, 2009 at 7:28 AM, Stefan <stefan@chehalispost.com> wrote:

Hello all, I was recently looking at different ways to switch our web
application written in Lua from apache to nginx (we are currently using
mod_wombat *in production* to earn a living).


I wouldn't use mod_wombat in production at the moment, it can be
vulnerable to DoS attack because the size of the request body that is
read is not limited and could fill the memory. It should use apreq2
instead of trying to do request parsing by itself. And there is no
easy way to limit and control how server resources are used (max
execution time, memory limit, ...).

Correction: a in-house modified version of mod_wombat, based on the lastsnap back when they *did* use apreq2. And yes, the lack of propercontrols is one of the issues prompting the switch.

When I performed heavy benchmarking, apache filled the screen of 'top'with over 60 httpd processes. And that was at only 10 concurrentconnections.

References:
- FastCGI daemon, Stefan
- Re: FastCGI daemon, Bertrand Mansion

Prev by Date: Re: Creating userdata interfaces
Next by Date: Re: FastCGI daemon
Previous by thread: Re: FastCGI daemon
Next by thread: Re: FastCGI daemon
Index(es):
- Date
- Thread