Am Montag, den 05.03.2012, 09:49 -0800 schrieb Luke Scott: > The script would have to run on every request (perhaps only when base > functionality is extended by the user). If this is like the old PHP CGI I > would probably run into problems. But I do agree having a Node instance > spawn other Node instances is probably overkill and I'd be better off > spawning vanilla V8 instances (v8cgi perhaps?).
Can't you just run the code on the client side and hook it into the server with dnode or something like that? (Or regular AJAX if you're worried about DoS attacks - as soon as you run something like socket.io, you're pretty much defenseless against mildly sophisticated DoS attacks. A few months ago, you could let nodes RAM overflow remotely with a single shell command if the remote side was running socket.io (endless POST), and now.js was even more vulnerable - a single tiny message, and node completely blocked the event loop. At the moment, it probably takes a small script to kill a socket.io instance, but it's not hard.)
signature.asc
Description: This is a digitally signed message part
