Somehow this comment reminded me of Richard Hipp :)

https://www.mail-archive.com/[email protected]/msg02065.html (2011)

https://news.ycombinator.com/item?id=3036124

It is run off of inetd. For each inbound HTTP request, a new process is created which runs the program implemented by the C file shown above.

…

This server takes over a quarter million requests per day, 10GB of traffic/day, and it does so using less than 3% of of the CPU on a virtual machine that is a 1/20th slice of a real server.

How much more efficient does that need to be? Sure, it won’t scale up to Google or Facebook loads, but it doesn’t need to.

Funny how this was 13 years ago, and computers are way more powerful now than they were then.

(e.g. the 128 core / 512 GB RAM server quoted in the intro … my point is that this needs only 1 Linux kernel to manage it – it doesn’t need 128 of them.)

And damn how did I neglect to put this link in the blog post …

I also like your Lisp example. The mixing of static and dynamic content is exactly why I use CGI / FastCGI … it’s just good engineering, and it was borne out by the Dreamhost outage. Nobody noticed that the site went down because the static parts stayed up. This architecture has better availability

Serving static files shouldn’t be coupled to dynamic programs that change and are redeployed often. What makes software unreliable is things that change quickly, so you should separate the parts of your stack that change from the parts that don’t. I can change static files, or I can change CGI scripts, and they are separate.

Hipp also uses precisely this technique for efficiency. The total load on the server is lower if you do the easy thing with the fast path (static files), and then the harder thing (dynamic content) with a program.

Another comment … apparently I have been thinking about CGI for decades :) https://news.ycombinator.com/item?id=16194174

Which part are you replying to? Who’s saying that?

What I’m saying is that FastCGI now appears to be an implementation detail of PHP. It is limited to php-fpm.

Prove me wrong by finding me a web host that will run Python/Go/Rust FastCGI scripts – where I just drop in a file and perhaps configure .htaccess (like PHP)!

I looked for many days and I don’t think it exists anymore. I signed up for 2 new shared hosts (Mythic Beasts and OpalStack)

Related comment - https://lobste.rs/s/kvqpan/what_is_self_hosted_what_is_stack#c_3ugitl

The thing that runs Python FastCGI I believe is mod_fcgid – this is the thing that Dreamhost is unable to support

https://httpd.apache.org/mod_fcgid/

mod_fcgid is a high performance alternative to mod_cgi or mod_cgid, which starts a sufficient number instances of the CGI program to handle concurrent requests, and these programs remain running to handle further incoming requests. It is favored by the PHP developers, for example, as a preferred alternative to running mod_php in-process, delivering very similar performance.

I am actually not sure the second sentence is true. I would be very interested to know though!

I kinda feel like the PHP developers kinda went their own way and just work on php-fpm, but I am not 100% sure about the relationship between codebases / maintainers

Also I don’t know why there are even two different Apache modules, and what exactly in php-fpm is specific to PHP. I guess it probably has some extra hooks into the PHP interpreter?

FastCGI has both a process management part and a binary protocol part. mod_fcgid does both I think.

Mythic Beasts support requests are handled by the engineers.

Oh very interesting, yes I was saying that if Github Pages supported cgi-bin then I might recommend that … it’s a data-oriented architecture.

Looks like Cloudflare does better with TypeScript and their “v8 at the edge” products ..

I still would like it to be Unix-y and support Python, PHP, shell, Rust, Go, or whatever. I think the issue is that they are architected around a v8 sandbox and not an OS sandbox.

I don’t particularly care for the big opaque CDN in front of everything – because my small slice of a Dreamhost bare metal box has served 8 years of Hacker News spikes with ease – but yeah “sync file system with git or rsync” is definitely the interface that makes sense.

Do shared hosts not support running persistent processes? If not, they should.

Given how many users are typically given accounts on a single host, this would be extremely wasteful for memory compared to CGI. Shared hosting (at least back in the day) was dramatically cheaper specifically because you could fit a lot more customers on a single machine.

it’s not general enough

It’s not general enough to replace a VPS, but it’s general enough for me. Just because it doesn’t solve every problem out there doesn’t mean it’s dead.

Yeah so I was going to “invent” AGI (Andy’s Gateway Interface) – which is just any HTTP server with FastCGI-style process management …

AGI_LISTEN_PORT=9090  # server sets this, and the binary listens on that port 
(could also be Unix domain socket path)
AGI_CONCURRENCY=2  # for threads or goroutines perhaps

The key points are

• PHP-like deployment. I drop a file in and it runs …
• Your process can be killed, made dormant, and restarted at any time. This is necessary for shared hosting to be economical. 99% of apps have like 100 hits or less a day. You don’t want to take up server memory keeping them alive. This is precisely the “cold start” issue in the cloud, which has a rationale

This does not exist currently, but there’s no reason it shouldn’t!

Most shared hosts don’t support persistent processes. Dreamhost doesn’t.

Mythic Beasts does, but somewhat surprisingly it exposes systemd config files in your home dir:

https://www.mythic-beasts.com/support/hosting/python (I haven’t set this up yet, but I will)

OpalStack has some pretty weird advice for Go servers: https://community.opalstack.com/d/695-golang-in-opalstack

Like basically using cron jobs to restart them … this seems like “non-support”.

My guess that it creates more of a server management headache. But it is something that the cloud providers have solved, and it gives a better user experience.

It’s mainly the maintenance/security – I want the PHP-like deployment model.

I drop the executable on the server, and it runs for YEARS – 7 years in this case – with zero maintenance.

It’s the cloud model, but it’s not a cloud – it’s actually more reliable IME.

A Linux box, with Python, connected to a network, is a total commodity, and somebody else can do it better than I can.

i.e. I don’t care about the web server version, the OS version, or SSL certificates

I do have a Linode VPS, but the uptime of my shared hosting account is a lot higher than the uptime of my VPS …

So basically I use Dreamhost for things I actually want to be up, like oilshell.org !

Makes sense, but for anyone wanting to go for extremely low maintenance I want to highly recommend OpenBSD.

The reason is that OpenBSD in the base install (so NO packages installed) comes with a HTTP server, a way to get a letsencrypt certificate with it, CGI and OpenSSH (obviously) which provides you with SFTP.

The maintenance is:

• syspatch to update (and it will send emails to whatever alias you set for root)
• sysupgrade for single-command upgrades (caveat: There MIGHT be occasional additional stuff, such as removing old configs, but often enough it doesn’t really matter and you get commands to copy & paste)

This is over-simplified because of things like backups, but that’s something where it’s way too common to think you don’t need them. This is essentially never true, not even for the most expensive cloud services. A big company lost all their data due to a mistake by Google.. A VPS might provide a backup solution.

It even comes with tmux, etc. without any package. And having the opportunity to use an OS without packages is great. However you may install them of course which adds pkg_add -u into the maintenance process which will give you security updates unless you upgrade the OS when it will give you other updates as well.

I am pragmatic enough to know, when I’d not use OpenBSD, but when I know I can get away with mostly the default install it brings so much peace of mind, because the maintenance goes down significantly and then having mails that inform you on security updates and if on a dedicated server, whether hardware or raid mirrors die, etc. is just so nice when it comes to maintenance.

Doesn’t git have a way to handle on-push events on the remote? It takes a bit of manual setup but you could put your script in there.

Alternatively, just run a cron job often enough to pick up your changes within your tolerance. If your build process doesn’t take a lot of resources when there are no changes, you could just run it every few minutes.

I want to build this :)

(related blog post linked in the appendix – a CI service is surprisingly similar to a distributed OS – it manages code/data/users across remote hardware)

Oils has a dialect for it (which needs work) – Hay Ain’t YAML - https://lobste.rs/s/phqsxk/hay_ain_t_yaml_custom_languages_for_unix

So basically no YAML CI configs.

It would be based on our very heterogeneous and very thorough CI which has been running for several years on both sourcehut and Github Actions: http://op.oils.pub/

I know there are many other “self-hosted CI solutions”. I’d be interested in feedback from people who use them.

I guess the main difference is that it’s supposed to be modular/Unix-y – Unix composes in a language-oriented fashion.

I don’t think YAML is a good enough language for reliable composition. It seems to be mostly a cut and paste language, where the cloud provider implements algorithms behind the scenes, and you can choose some of those “presets”.

And you have to guess what the presets do. You have to fit your problem into that framework.

It’s not really programmable, or general. My opinion is that a CI is a distributed shell script, and shell is completely general computation.

There’s a bunch of other work in front of this, but feel free to join https://oilshell.zulipchat.com/ if interested!

I should have emphasized that I really want Python support with a persistent process, like FastCGI. (ssh access seems pretty standard these days)

If you look under Hetzner’s “developer features”, they have CGI Python, but they disclaim WSGI as an explicit NO. (This is super unusual because I’ve found that shared hosts tend to over-advertise support, not explicitly deny supporting things. But in this case I appreciate it)

As mentioned, the two hosts I signed up to find Python support that’s more than CGI [1] are

• Mythic Beasts - https://www.mythic-beasts.com/support/hosting/python - seems very good so far, but for some reason the latency from US East Coast to their European location is surprisingly large. It seems worse than transatlantic latency. Like 1+ seconds to SSH.

• OpalStack has not just Python but Rails and node.js. A unique modern shared host - https://opalstack.com/

  • I’m using their uwsgi support right now, but I don’t like uswgi for the reasons stated in the post. It’s not Unix-y since the uwsgi server embeds a specific version of a Python interpreter.

[1] the reason I don’t like CGI is because the Python interpreter itself starts slowly, which is a point I make in the post. Some pages on oilshell.org now have 50 ms of extra latency because of this. Of course the web is so slow that nobody complains about 50 ms anymore, but I care :-)

Yeah unfortunately I feel like Pair is in the exact same spot / same era as Dreamhost.

They probably had decent FastCGI support at one point, but so few customers are using it that it “rotted” and they probably will not be responsive when things go wrong.

I think demand was always low, since Rails and Django never supported FastCGI well. It was always an afterthought to them.

–

That page sorta looks like the Dreamhost FastCGI pages – they mention FastCGI, but not in much detail. And it feels a bit PHP-specific.

I got past the first level of support in Dreamhost, and it’s clear nobody there knows anything about FastCGI. They kept saying that I should start fewer FastCGI processes. But it’s mod_fcgid on THEIR end that does that, not me! I just drop the executable in there, and the server starts the processes.

I think it broke with Dreamhost’s latest Ubuntu upgrade, and so few people are using non-PHP FastCGI that they are not going to fix it. That was pretty clear from the support responses.

Traditionally CGI programs have been scripts, so the startup time is dominated by interpreter overheads. If the CGI is a binary its startup time is dominated by dynamic linking (ELF interpreter overheads, heh) which you can reduce by static linking. If that isn’t fast enough it’s best to daemonize.