On Sat, Feb 21, 2004 at 01:13:02PM -0500, Theo Van Dinter wrote: > On Sat, Feb 21, 2004 at 12:53:46PM -0500, Theo Van Dinter wrote: > > As I said, it'd be nice if we could use some of the httpd code to do > > this, since this is exactly what they do... and since we're all in the > > ASF and using the same license now ... ;) > > Actually, poking around for a minute, Net::Server does what we want > already (specifically the PreFork method). And it's even an all-perl > solution. ;)
Some quick thoughts: Preforking is good for a bit of extra performance, but with copy-on-write it's not that much is it? And, this will completely break spamd's ability to setuid to the user to work ontop of a traditional unix system. Or rather, you can only use a preforking method if you are runing with virtual-users or SQL users, etc. To work around this, SA'd have to just change effective user and not real user in it's setuid calls (so it could return to uid user and setuid to another user.) [I can't remember if that's even possible.] This would leave alot of code and dependent modules running as root whereas at this time, only a tiny bit of code runs as root after the fork. Since I helped write that code I'm quite confident that it's secure. -- Kelsey Cummings - [EMAIL PROTECTED] sonic.net, inc. System Administrator 2260 Apollo Way 707.522.1000 (Voice) Santa Rosa, CA 95407 707.547.2199 (Fax) http://www.sonic.net/ Fingerprint = D5F9 667F 5D32 7347 0B79 8DB7 2B42 86B6 4E2C 3896
