Phill Brown, profile picture
Uploaded byPhill Brown
PDF, PPTX1,989 views

PHP Handlers

The document discusses various PHP handlers, including DSO, CGI, suphp, and fastcgi, highlighting their CPU and memory usage, as well as ownership and accelerator support. It emphasizes the benefits of mod_ruid2, which allows for better process ownership control by running scripts under specific user credentials, thus enhancing security and performance. Ultimately, the preferred setup combines DSO with mod_ruid2 for optimized resource management across different sites.

Embed presentation

Download as PDF, PPTX
Secure, Fast and Experimental PHP Handling PBWEB.CO.UK @PHILL_BROWN
What is a PHP Handler? <?php Interprets Hello echo ‘Hello’; code
DSO (mod_php) • Makes PHP part of Apache • Oldest and most common • Runs in the same process as Apache - low CPU and memory usage • PHP-created files owned by apache user
CGI • Run as a program outside of your server • Reads php.ini configuration at runtime • Loads PHP on every request - requires more CPU time and processes
suPHP • Apache runs as the user that owns the requested PHP script • Doesn’t support PHP accelerators eg APC • High CPU usage
FastCGI • Apache runs as the user that owns the requested PHP script • Keeps a persistent session in the background • Lower CPU but high memory usage
Summary DSO CGI suPHP FastCGI CPU usage Memory usage Run as file owner Supports PHP Accelerators
The Ultimate Handler Setup CPU usage Memory usage Run as file owner Supports PHP Accelerators
Enter mod_ruid2
What is mod_ruid2? mod_ruid2 Apache /webroot Tells Apache to run Loads a wrapper /webroot files as User1 program that executes and Group1 your scripts using the configured credentials
Where did mod_ruid2 come from? mod_suid2 Faster mod_ruid2 Makes use of the Linux kernel to reduce processes
How do we use mod_ruid2 to achieve The Ultimate Handler Setup?
DSO + mod_ruid2
DSO • Low CPU usage mod_ruid2 • Process ownership control • Low memory usage • PHP accelerator support
Apache server User2 Site1 files Site2 files Site3 files owned by owned by owned by User1 User2 User3
Apache is imprisoned in each website
It gets better..
Site 1 includes misc modules Apache can write to any file profiles scripts sites themes index.php ...
Site 1 includes misc But we can modules profiles scripts lockdown Apache sites/default/files themes index.php ... even further
Create a separate user for Apache
Group User ApacheUser
This is The Ultimate Handler Setup ‐rw‐r‐‐‐‐‐ User Group index.php drwxrwx‐‐‐ User Group sites/default/files
Thank you for listening! Handling questions.. PBWEB.CO.UK @PHILL_BROWN

More Related Content

PPTX
New microsoft power point presentation
byrajsandhu1989
 
PDF
Ansible for Configuration Management for Lohika DevOps training 2018 @ Lohika...
byIhor Banadiga
 
PDF
Introduction to Ansible
byMichael Bahr
 
ODP
Forget MAMP and WAMP, Use Virtual Box to Have a Real Ubuntu Server
byaaroncouch
 
PDF
Using filesystem capabilities with rsync
byHazel Smith
 
KEY
Amepad lt(tmpfs)
bySatoshi Udagawa
 
PDF
Containers > VMs
byDavid Timothy Strauss
 
PDF
Docker up and running
byVictor S. Recio
 
New microsoft power point presentation
byrajsandhu1989
 
Ansible for Configuration Management for Lohika DevOps training 2018 @ Lohika...
byIhor Banadiga
 
Introduction to Ansible
byMichael Bahr
 
Forget MAMP and WAMP, Use Virtual Box to Have a Real Ubuntu Server
byaaroncouch
 
Using filesystem capabilities with rsync
byHazel Smith
 
Amepad lt(tmpfs)
bySatoshi Udagawa
 
Containers > VMs
byDavid Timothy Strauss
 
Docker up and running
byVictor S. Recio
 

What's hot

PPTX
Container Monitoring with Sysdig
bySreenivas Makam
 
ODP
Squid Proxy Server
by13bcs0012
 
PPT
Linux Backup System using rsync, tar, gzip
byKyle Mathews
 
PDF
Linux Integrity Mechanisms - Protecting Container Runtime as an example
byClay (Chih-Hao) Chang
 
PDF
Configuration Management - Finding the tool to fit your needs
bySaltStack
 
PPTX
How to configure multiple PostgreSQL-9
byVivek Singh
 
PPTX
Introduction to Memory-Style Storage in Linux
byClay (Chih-Hao) Chang
 
PDF
Squid proxy-configuration-guide
byjasembo
 
PPTX
Docker practical solutions
byKesav Kumar Kolla
 
PDF
Architecting for the cloud
byLeonidas Tsementzis
 
ODP
How we setup Rsync-powered Incremental Backups
bynicholaspaun
 
PPTX
Automating with Ansible
byRicardo Schmidt
 
PPTX
Magento Meetup Wrocław 6. "Docker for Mac - possible solutions to performance...
byMagento Meetup Wrocław
 
PPT
Squid Caching for Web Content Accerlation
byrahul8590
 
PDF
Project Atomic-Nulecule
byLalatendu Mohanty
 
PPTX
Sim, a Microsoft usa Open Source em DevOps
byDanilo Bordini
 
PPT
Squid Server
bySumant Garg
 
PDF
Стажировка 2015. Разработка. Занятие 5. Использование nginx
by7bits
 
PPTX
What every data programmer needs to know about disks
byiammutex
 
PDF
2017-03-11 02 Денис Нелюбин. Docker & Ansible - лучшие друзья DevOps
byОмские ИТ-субботники
 
Container Monitoring with Sysdig
bySreenivas Makam
 
Squid Proxy Server
by13bcs0012
 
Linux Backup System using rsync, tar, gzip
byKyle Mathews
 
Linux Integrity Mechanisms - Protecting Container Runtime as an example
byClay (Chih-Hao) Chang
 
Configuration Management - Finding the tool to fit your needs
bySaltStack
 
How to configure multiple PostgreSQL-9
byVivek Singh
 
Introduction to Memory-Style Storage in Linux
byClay (Chih-Hao) Chang
 
Squid proxy-configuration-guide
byjasembo
 
Docker practical solutions
byKesav Kumar Kolla
 
Architecting for the cloud
byLeonidas Tsementzis
 
How we setup Rsync-powered Incremental Backups
bynicholaspaun
 
Automating with Ansible
byRicardo Schmidt
 
Magento Meetup Wrocław 6. "Docker for Mac - possible solutions to performance...
byMagento Meetup Wrocław
 
Squid Caching for Web Content Accerlation
byrahul8590
 
Project Atomic-Nulecule
byLalatendu Mohanty
 
Sim, a Microsoft usa Open Source em DevOps
byDanilo Bordini
 
Squid Server
bySumant Garg
 
Стажировка 2015. Разработка. Занятие 5. Использование nginx
by7bits
 
What every data programmer needs to know about disks
byiammutex
 
2017-03-11 02 Денис Нелюбин. Docker & Ansible - лучшие друзья DevOps
byОмские ИТ-субботники
 

Similar to PHP Handlers

PPTX
Information on PHP Handlers
byHTS Hosting
 
PPTX
Apache web server
byRishabh Bahukhandi
 
PDF
PHP, Handle with care
byPhill Brown
 
PPT
Download It
bywebhostingguy
 
PPT
apresentacao_apache2..
bywebhostingguy
 
PPT
apresentacao_apache2..
bywebhostingguy
 
PDF
Saint2012 mod process security
byRyosuke MATSUMOTO
 
PDF
Securing the Apache web server
bywebhostingguy
 
PDF
Securing the Apache web server
bywebhostingguy
 
PDF
Php through the eyes of a hoster confoo
byCombell NV
 
PPT
Securing Your Webserver By Pradeep Sharma
byOSSCube
 
PDF
A look at FastCgi & Mod_PHP architecture
byAimee Maree
 
PDF
ApacheConNA 2015: What's new in Apache httpd 2.4
byJim Jagielski
 
KEY
Apache Wizardry - Ohio Linux 2011
byRich Bowen
 
PDF
Apache HTTPD 2.4 - GWO2016
byJim Jagielski
 
PDF
Apache httpd v2.4
byGreat Wide Open
 
PPT
Apache Street Smarts Presentation (SANS 99)
byMichael Dobe, Ph.D.
 
PDF
Building apache modules
byMarian Marinov
 
ODP
PHP {in}security
byMichael Clark
 
PDF
Secure PHP environment
bySpeedPartner GmbH
 
Information on PHP Handlers
byHTS Hosting
 
Apache web server
byRishabh Bahukhandi
 
PHP, Handle with care
byPhill Brown
 
Download It
bywebhostingguy
 
apresentacao_apache2..
bywebhostingguy
 
apresentacao_apache2..
bywebhostingguy
 
Saint2012 mod process security
byRyosuke MATSUMOTO
 
Securing the Apache web server
bywebhostingguy
 
Securing the Apache web server
bywebhostingguy
 
Php through the eyes of a hoster confoo
byCombell NV
 
Securing Your Webserver By Pradeep Sharma
byOSSCube
 
A look at FastCgi & Mod_PHP architecture
byAimee Maree
 
ApacheConNA 2015: What's new in Apache httpd 2.4
byJim Jagielski
 
Apache Wizardry - Ohio Linux 2011
byRich Bowen
 
Apache HTTPD 2.4 - GWO2016
byJim Jagielski
 
Apache httpd v2.4
byGreat Wide Open
 
Apache Street Smarts Presentation (SANS 99)
byMichael Dobe, Ph.D.
 
Building apache modules
byMarian Marinov
 
PHP {in}security
byMichael Clark
 
Secure PHP environment
bySpeedPartner GmbH
 

More from Phill Brown

PDF
Drupal vs WordPress
byPhill Brown
 
PDF
WordPress Workflows
byPhill Brown
 
PDF
Building better WordPress applications
byPhill Brown
 
PDF
Drupal feeds
byPhill Brown
 
PDF
Introduction to git
byPhill Brown
 
PDF
Drupal vs WordPress
byPhill Brown
 
Drupal vs WordPress
byPhill Brown
 
WordPress Workflows
byPhill Brown
 
Building better WordPress applications
byPhill Brown
 
Drupal feeds
byPhill Brown
 
Introduction to git
byPhill Brown
 
Drupal vs WordPress
byPhill Brown
 

Recently uploaded

PDF
Digital Marketing Trends in 2026: AI, Data, Content & Future Growth
byConacent Consulting
 
PDF
splunk-peak-threat-hunting-framework.pdf
bylobster6719
 
PDF
What is Voice User Interface (VUI) Definition & Examples.pdf
byDesign Studio UI UX
 
PPTX
DATALIVA-Presentation-EN_2026 Budgeting SAP Odoo ERP
byMustafa Kuğu
 
PDF
Strengthening cybern resilience for a leading indian Financial Services group
bypandeydevika621
 
PPTX
Cybersecurity Basics: Understanding Threats, Protection Methods, and Safe Dig...
byDhruvManiar3
 
PPTX
Search Engine Responses to Conspiratorial Search Practices AANZCA 2025 Presen...
bykkasianenko
 
PPTX
Pizza Chain Market Data Scraping for Better Insights Report.pptx
byWeb Data Crawler
 
PDF
IAC 500 Sensor - Humidity Measurement Device
byCS Instruments
 
PPTX
Large Language Model. LLM Audit Artificial Intelligence
byMANASCHOUDHARY22
 
PDF
Video Infrastructure_ Streaming Architecture and Delivery Systems.pdf
byTenbyte Limited
 
PPTX
Digital transformation success powered by EPM and NexInfo.pptx
byjayasuryanexinfo
 
PDF
Regenerative Agriculture Finance : Environmental impact
byrose mason
 
PPTX
Document Reconstruction using AI & Deep Learning
bysonjuktaweb
 
PPTX
AI Bot Traffic Surge: Retail Fraud Threat for Age-Restricted Websites
byFTx Identity
 
PPTX
UNIT III TYPOLOGY OF CRIME AND CRIMINAL BEHAVIOUR (1).pptx
bybloodyhumanoid
 
PPTX
Information about Trusted Platform Module(TPM)
bynewtoknow techs
 
PPTX
AN Introduction to UNIX File System—An Approach
bysonjuktaweb
 
PDF
Achieving Interoperability in Healthcare IT: A Strategic Guide
byHart, Inc.
 
PDF
Small Business Automation: A Comprehensive Cost and ROI Guide
byAmelia Swank
 
Digital Marketing Trends in 2026: AI, Data, Content & Future Growth
byConacent Consulting
 
splunk-peak-threat-hunting-framework.pdf
bylobster6719
 
What is Voice User Interface (VUI) Definition & Examples.pdf
byDesign Studio UI UX
 
DATALIVA-Presentation-EN_2026 Budgeting SAP Odoo ERP
byMustafa Kuğu
 
Strengthening cybern resilience for a leading indian Financial Services group
bypandeydevika621
 
Cybersecurity Basics: Understanding Threats, Protection Methods, and Safe Dig...
byDhruvManiar3
 
Search Engine Responses to Conspiratorial Search Practices AANZCA 2025 Presen...
bykkasianenko
 
Pizza Chain Market Data Scraping for Better Insights Report.pptx
byWeb Data Crawler
 
IAC 500 Sensor - Humidity Measurement Device
byCS Instruments
 
Large Language Model. LLM Audit Artificial Intelligence
byMANASCHOUDHARY22
 
Video Infrastructure_ Streaming Architecture and Delivery Systems.pdf
byTenbyte Limited
 
Digital transformation success powered by EPM and NexInfo.pptx
byjayasuryanexinfo
 
Regenerative Agriculture Finance : Environmental impact
byrose mason
 
Document Reconstruction using AI & Deep Learning
bysonjuktaweb
 
AI Bot Traffic Surge: Retail Fraud Threat for Age-Restricted Websites
byFTx Identity
 
UNIT III TYPOLOGY OF CRIME AND CRIMINAL BEHAVIOUR (1).pptx
bybloodyhumanoid
 
Information about Trusted Platform Module(TPM)
bynewtoknow techs
 
AN Introduction to UNIX File System—An Approach
bysonjuktaweb
 
Achieving Interoperability in Healthcare IT: A Strategic Guide
byHart, Inc.
 
Small Business Automation: A Comprehensive Cost and ROI Guide
byAmelia Swank
 

PHP Handlers

  • 1.
    Secure, Fast andExperimental PHP Handling PBWEB.CO.UK @PHILL_BROWN
  • 2.
    What is aPHP Handler? <?php Interprets Hello echo ‘Hello’; code
  • 3.
    DSO (mod_php) • MakesPHP part of Apache • Oldest and most common • Runs in the same process as Apache - low CPU and memory usage • PHP-created files owned by apache user
  • 4.
    CGI • Run asa program outside of your server • Reads php.ini configuration at runtime • Loads PHP on every request - requires more CPU time and processes
  • 5.
    suPHP • Apache runsas the user that owns the requested PHP script • Doesn’t support PHP accelerators eg APC • High CPU usage
  • 6.
    FastCGI • Apache runsas the user that owns the requested PHP script • Keeps a persistent session in the background • Lower CPU but high memory usage
  • 7.
    Summary DSO CGI suPHP FastCGI CPU usage Memory usage Run as file owner Supports PHP Accelerators
  • 8.
    The Ultimate HandlerSetup CPU usage Memory usage Run as file owner Supports PHP Accelerators
  • 9.
  • 10.
    What is mod_ruid2? mod_ruid2 Apache /webroot Tells Apache to run Loads a wrapper /webroot files as User1 program that executes and Group1 your scripts using the configured credentials
  • 11.
    Where did mod_ruid2come from? mod_suid2 Faster mod_ruid2 Makes use of the Linux kernel to reduce processes
  • 12.
    How do weuse mod_ruid2 to achieve The Ultimate Handler Setup?
  • 13.
  • 14.
    DSO • Low CPUusage mod_ruid2 • Process ownership control • Low memory usage • PHP accelerator support
  • 15.
    Apache server User2 Site1 files Site2 files Site3 files owned by owned by owned by User1 User2 User3
  • 16.
    Apache is imprisonedin each website
  • 17.
  • 18.
    Site 1 includes misc modules Apache can write to any file profiles scripts sites themes index.php ...
  • 19.
    Site 1 includes misc But we can modules profiles scripts lockdown Apache sites/default/files themes index.php ... even further
  • 20.
    Create a separateuser for Apache
  • 21.
    Group User ApacheUser
  • 22.
    This is The Ultimate Handler Setup ‐rw‐r‐‐‐‐‐ User Group index.php drwxrwx‐‐‐ User Group sites/default/files
  • 23.
    Thank you forlistening! Handling questions.. PBWEB.CO.UK @PHILL_BROWN