I've tried KDE 4.1 today (from tarballs provided to distro packagers). This was switch from 3.5.9. Note: I didn't play with 4.0, so no idea what changed between 4.0 and 4.1.
I can say what's problematic after switch from 3.5.9 to 4.1:
- 4.1 cannot be installed with 3.5 at the same time without violating FHS standard. Distros are violating this and don't care. Unfortunately I care.
- switching between tabs in konsole is much slower than in kde 3.5 konsole. Enabling composite in xorg.conf makes things go a little faster (not that I don't use any fancy graphic desktop features - I don't need these, so no idea why composite added some speed)
- kmilo is gone which means that with kde 4.1 support for additional thinkpad keys, audio setup etc is also gone
- panels can be only horizontal. I had small vertical panel with apps buttons on it in 3.5. Doing this is no longer possible with kde 4.1.
- changing order of icons on the panel is not possible or requires some black magic. If it is possible then its hidden deeply.
Now I'm back on 3.5.9. These little annoyances makes you want go back to kde 3.5. I hope kde 4.2 or 4.3 will have these features again.
macromedia flash is available only on tiny number of operating systems! I had Linux/ppc and wasn't able to use macromedia flash. Unfortunately some webmasters are so stupid that use flash everywhere and provide no alternative.
"Over 1,000 registration agents were only allowed one connection each to EURid's servers in order to prevent problems and ensure fairness."
Fairness? Please check official registrars list on the eurid web site. There are tons of clons there sharing the same address and/or telephone number just to avoid 1 connection to eurid limit.
No - lighttpd doesn't. lighttpd is quite actively developed BUT this is the same situation as in apache team. No one is interested in adding such support.,,for that solution'' means for using separate instance for each user solution as someone proposed.
10 000 * nr of apache childs processes? Don't be silly. I have many vhosts but not very popular so about 100 q/s max.
Re:When are they going to fix mpm_perchild
on
Apache 2.2.0 Released
·
· Score: 3, Interesting
AFAIK there is 0 interest in fixing perchild in apache community. Too bad because this is the biggest disadvantage of apache. There is simply NO WAY to run vanilla apache + mod_python/mod_php/mod_perl/mod_whatever in a SECURE way in multiuser enviroment:-(
,,They just work and on any platform, much like Skype.''
In your dream. Skype doesn't work on huge amount of platforms. Some of them quite popular like Linux/ppc. Skype is about money and they provide clients only for these platforms which can gain them profit. Nothing more.
They didn't release it for Linux - they did release for Linux x86 _only_. Only this one architecture is supported which is sad since I use ppc (fortunately there is great kpdf from kde 3.4):-)
Anyway please be accurate next time.
Next thing is when I last checked adobe acrobat reader 7 for Linux wasn't able to deal with pdfs that acrobat reader 7 for windows was dealing without any problems - example http://www.carto.net/papers/svg/us_population/us_p opulation.pdf
The worse thing here is that no one from Apache project is working on this.
There are few people that are trying to get such support but major Linux distributions that could sponsor/develop this don't seem to think that this is needed for their customers.
Security in apache is very low in terms of users separation:-/
Lack of security between users/virtual hosts
on
Hardening Apache
·
· Score: 3, Insightful
There is one thing that makes apache very unsecure. Suppose that you have few users each having it's own virtual host. Apache is running from exactly the same UID/GID for each virtual host! There is no way in pure apache to prevent user A from looking into user B vhost files (containing for example php scripts, password to sql databases etc).
You would need to run multiple apaches running from different UIDs for each user:/
That's bad. suexec it's not a option - it doesn't work with mod_python and other apache modules.
perchild MPM module that should do it doesn't work and apache developers are not interested in fixing that. No idea why.
metuxmpm MPM module was written instead perchild by external developers but it also doesn't work well unfortunately (for me it doesn't work at all).
Open source virus scanner strips attachments and then I get bunch of almost empty messages that would be stopped by mine antivirus (or rather simple exiscan rules) if they were _with_ attachments:-(
Slashdot Mirror
I've tried KDE 4.1 today (from tarballs provided to distro packagers). This was switch from 3.5.9. Note: I didn't play with 4.0, so no idea what changed between 4.0 and 4.1.
I can say what's problematic after switch from 3.5.9 to 4.1:
- 4.1 cannot be installed with 3.5 at the same time without violating FHS standard. Distros are violating this and don't care. Unfortunately I care.
- switching between tabs in konsole is much slower than in kde 3.5 konsole. Enabling composite in xorg.conf makes things go a little faster (not that I don't use any fancy graphic desktop features - I don't need these, so no idea why composite added some speed)
- kmilo is gone which means that with kde 4.1 support for additional thinkpad keys, audio setup etc is also gone
- panels can be only horizontal. I had small vertical panel with apps buttons on it in 3.5. Doing this is no longer possible with kde 4.1.
- changing order of icons on the panel is not possible or requires some black magic. If it is possible then its hidden deeply.
Now I'm back on 3.5.9. These little annoyances makes you want go back to kde 3.5. I hope kde 4.2 or 4.3 will have these features again.
macromedia flash is available only on tiny number of operating systems! I had Linux/ppc and wasn't able to use macromedia flash. Unfortunately some webmasters are so stupid that use flash everywhere and provide no alternative.
You could put single IP five times and have 5 domain:create/s capacity. Eurid was slower than that though (only about 1 domain:create per 2 seconds).
"Over 1,000 registration agents were only allowed one connection each to EURid's servers in order to prevent problems and ensure fairness."
Fairness? Please check official registrars list on the eurid web site. There are tons of clons there sharing the same address and/or telephone number just to avoid 1 connection to eurid limit.
And what eurid did about this? Nothing.
No - lighttpd doesn't. lighttpd is quite actively developed BUT this is the same situation as in apache team. No one is interested in adding such support. ,,for that solution'' means for using separate instance for each user solution as someone proposed.
On single machine? Anyway - it eats resources to heavily in such setup :(
For that solution I would use http://www.lighttpd.net/ (needs less memory than apache).
If there just would be a sponsor for such project + some apache developer interested..
10 000 * nr of apache childs processes? Don't be silly. I have many vhosts but not very popular so about 100 q/s max.
AFAIK there is 0 interest in fixing perchild in apache community. Too bad because this is the biggest disadvantage of apache. There is simply NO WAY to run vanilla apache + mod_python/mod_php/mod_perl/mod_whatever in a SECURE way in multiuser enviroment :-(
,,They just work and on any platform, much like Skype.''
In your dream. Skype doesn't work on huge amount of platforms. Some of them quite popular like Linux/ppc. Skype is about money and they provide clients only for these platforms which can gain them profit. Nothing more.
They didn't release it for Linux - they did release for Linux x86 _only_. Only this one architecture is supported which is sad since I use ppc (fortunately there is great kpdf from kde 3.4) :-)
p opulation.pdf
Anyway please be accurate next time.
Next thing is when I last checked adobe acrobat reader 7 for Linux wasn't able to deal with pdfs that acrobat reader 7 for windows was dealing without any problems - example http://www.carto.net/papers/svg/us_population/us_
The worse thing here is that no one from Apache project is working on this.
:-/
There are few people that are trying to get such support but major Linux distributions that could sponsor/develop this don't seem to think that this is needed for their customers.
Security in apache is very low in terms of users separation
There is one thing that makes apache very unsecure. Suppose that you have few users each having it's own virtual host. Apache is running from exactly the same UID/GID for each virtual host! There is no way in pure apache to prevent user A from looking into user B vhost files (containing for example php scripts, password to sql databases etc).
:/
You would need to run multiple apaches running from different UIDs for each user
That's bad. suexec it's not a option - it doesn't work with mod_python and other apache modules.
perchild MPM module that should do it doesn't work and apache developers are not interested in fixing that. No idea why.
metuxmpm MPM module was written instead perchild by external developers but it also doesn't work well unfortunately (for me it doesn't work at all).
No, it doesn't. It offers much more features when running as /bin/sh which are abused by users still using #!/bin/sh in their scripts.
If you like APT-like tools then check out this!
/ po ldek-for-rpm-based-distro.txt
http://www.t17.ds.pwr.wroc.pl/~misiek/rozne/fc2
Open source virus scanner strips attachments and then I get bunch of almost empty messages that would be stopped by mine antivirus (or rather simple exiscan rules) if they were _with_ attachments :-(