[Klug-general] Re: Apache, PHP and MySQL security
J D Freeman
klug at quixotic.org.uk
Sat Jan 6 16:33:51 GMT 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Sat, Jan 06, 2007 at 04:24:21PM +0000, Matthew Macdonald-Wallace wrote:
> Fair point, I guess I need to start meeting more developers from
> Distros... :)
Yes, I highly recommend the social aspect of OSS. Consider attending
FOSDEM in febuary. Meeting developers is a very good thing, if you
really like their software, buy them a pint. If you find a bug you want
fixed, buy them a pint and tell them about the bug, chances are they
will fix it the moment they get home.
I don't know if this will apply to the big corperate distros tho, like
Redhat and SUSE.
That said, SUSE are great at giving out free t-shirts :p
> That's fair enough, and I'm starting to look at python have listened to
> a few podcasts about it, however a lot of people who develop
> web-applications using open-source software use PHP. As I am planning
> on running a very basic hosting service for some friends as a learning
> curve for both myself and them, I believe that PHP is a must.
Alot of people who use computers use Microsoft Windows. Doesn't make
them right does it? Just cos alot of people use PHP doesn't mean its a
good thing. By all means support it on your hosting, but encourage
people to Do It Right instead.
> I completely agree with you that PHP/MySQL is overused on the net, I've
> recently dropped the MySQL usage on a site I'm developing and I'm now
> using PHP purely for ease of templating. This could probably be done
> using SSI or even Web 2.0 (WTF??!) however for the moment (and until I
> learn more!) it's what I know.
Python has some really nice templating functions available. Restructured
Text, Zope Page Templates (you don't need to run zope to use them) all
spring to mind. They are a nice way to sort content. Personally tho, I
use SSI and static html on my site (http://www.quixotic.org.uk/) as I
find its all that is needed. The site is hardly a great load tho,
recieving upto 60k hits a month, but it handles them find, when you
consider its only got 64 meg of ram.
A friend recently setup a machine with LAMP on it, and was struggling
with the out the box setup using 30 meg of memory per request, and only
really coping with about 1 request a second. Now he has tuned it nicely
and it sits in 120Meg of ram total, and can handle 500 concurent
requests, quite a marked change. But I am left wondering why it sucked
so much to begin with such that they had to spend a day optimising the
setup so much, I personally would expect it to be right in the first
place.
J
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFFn8/b42M0lILkmGIRAjS/AJ4oMs3qbx8ZnwiiTMUbT/3+406HwACeOrrV
e+CJSZd3uRiT35Gq4NPAn6c=
=52cs
-----END PGP SIGNATURE-----
More information about the Kent
mailing list