Re: [mod-security-users] Performance using ModSecurity with Apache 1.3.x

[Justin G. <web...@sw...>]

I'm on h-sphere, same problem, specially on busy servers.
Using gotroot's rules was always a pain, specially their blacklists and badips, if I turn
these on, server skyrockets :)

Ivan, please keep us posted on your findings.

thanks,
	Justin


Zach Roberts wrote:
> This sounds like a very good idea. Some of us that use mod_security do 
> so with cPanel, Plesk, or other commercial control panels in shared 
> hosting environments and cannot switch to Apache 2 since it is not 
> supported.
> 
> Keep up the great work Ivan. :)
> 
> Zach
> 
> Ivan Ristic wrote:
> 
>> Some information for those of you using ModSecurity with
>> Apache 1.3.x:
>>
>> I have just completed a round of performance tests. As some of
>> you already know, the regular expression engine that comes
>> with Apache 1.3.x is much slower than the one that comes with
>> Apache 2.x (PCRE). When I say slower I mean *several times*
>> slower for non-trivial requests.
>>
>> However, today I tried something else: I compiled
>> ModSecurity for Apache 1.3.x against PCRE instead of the
>> built-in regex library. I only had a very brief time to
>> test the result but it appears that everything works
>> well and the regex execution speed is equal to that of
>> Apache 2.x.
>>
>> Chances are I will officially support compilation against
>> PCRE in the forthcoming 1.9.2.
>>
>>  
>>
> 
> 
> 
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log 
> files
> for problems?  Stop!  Download the new AJAX search engine that makes
> searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
> http://ads.osdn.com/?ad_id=7637&alloc_id=16865&op=click
> _______________________________________________
> mod-security-users mailing list
> mod...@li...
> https://lists.sourceforge.net/lists/listinfo/mod-security-users