From owner-freebsd-questions@FreeBSD.ORG Thu Nov 3 16:03:31 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E82A216A420 for ; Thu, 3 Nov 2005 16:03:31 +0000 (GMT) (envelope-from jonas@schiebtsich.net) Received: from jbhosting.de (mail.jbhosting.de [80.190.201.7]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6FAE843D48 for ; Thu, 3 Nov 2005 16:03:29 +0000 (GMT) (envelope-from jonas@schiebtsich.net) Received: (qmail 98112 invoked by uid 545); 3 Nov 2005 16:03:27 -0000 Received: from unknown (HELO sc-ws16.setcom) (jonsonn@jbhosting.de@213.23.78.38) by mx010.jbhosting.de with (RC4-MD5 encrypted) SMTP; 3 Nov 2005 16:03:27 -0000 From: jonas Organization: schiebtsich.net To: freebsd-questions@freebsd.org Date: Thu, 3 Nov 2005 17:05:28 +0100 User-Agent: KMail/1.8.2 References: <43470F58.6070609@celeritystorm.com> <43471845.4070806@servingpeace.com> In-Reply-To: <43471845.4070806@servingpeace.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200511031705.29411.jonas@schiebtsich.net> Cc: Sam Nilsson , "M. L." Subject: Re: suPHP - secure/reliable? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 03 Nov 2005 16:03:32 -0000 Hi M.L., Sam, > > Does anyone have anything to say about suPHP, either good or bad stuff ? > > I'd like your opinions. this reply is a bit late, but still helpfull I hope, since nobody using suPHP answered your request. I am currently using suPHP and it works quite nice. It's not as strict as suexec when it comes to file and directory permissions, but it still enforces some sane defaults and it's very fast and easy to set up (install suphp and php ports, set suPHP_Engine On in your vhosts and there you go). The downside of it (and this is why I'm thinking about switching to the FastCGI solution) is that for every request, a php process needs to be spawned, which can give your server hard time if you get a wave of something like 100 requests within a few seconds. I get this a few times every day on a server with ~100 customers, it usually results in a load of 25+. So if you're looking for something which is fast and easy to set up, for only a couple of users go with suPHP. The better solution is FastCGI, though. On Saturday 08 October 2005 02:52, Sam Nilsson wrote: > If you are interested in taking this route I may be able to help you > with the little details. I'd be really intrested to hear some few details about installation through the ports. From what I saw in the FastCGI documentation you need to do some strange configuration changes to your httpd.conf, so that .php files are properly passed to the FastCGI handler and that they'll be executed under the correct user. Could you share a quick overview what you did to get this up and running, apart from makeing install? Thanks! -- br. j.