From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham autolearn_force=no version=3.4.4 X-Google-Thread: 103376,27c24ba68e621eef X-Google-Attributes: gid103376,public X-Google-Language: ENGLISH,ASCII-7-bit Path: g2news1.google.com!news4.google.com!news.glorb.com!news.banetele.no!news.hacking.dk!pnx.dk!not-for-mail From: Jacob Sparre Andersen Newsgroups: comp.lang.ada Subject: Re: AWS applications and domain hosting Date: 27 Jun 2005 00:46:37 +0200 Organization: hacking.dk - Doing fun stuff with open source Sender: sparre@hugin.crs4.it Message-ID: References: NNTP-Posting-Host: 80.241.165.41 Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Trace: xyzzy.adsl.dk 1119826351 25223 80.241.165.41 (26 Jun 2005 22:52:31 GMT) X-Complaints-To: usenet@news.hacking.dk NNTP-Posting-Date: Sun, 26 Jun 2005 22:52:31 +0000 (UTC) User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.4 Xref: g2news1.google.com comp.lang.ada:11674 Date: 2005-06-27T00:46:37+02:00 List-Id: Marius Amado Alves writes: > This subject greatly interests me too, as I plan to deploy AWS-based > websites soon. I'll add what little I know, and join the original > poster in asking for help. > > As others have told, yes, domain and hosting are formally > separate. But many hosts offer registration, e.g. Yahoo!, and often > the package price beats buying the two things separately. That's not my experience. > Anyway, the information related to AWS belongs to the hosting part > only. Yes. > I think that, unlike someone else said, a separate web server, or > proxy (Apache), is neither required nor useful. The host system only > has to open a port (?) to AWS sockets, right? And allow the > AWS-based executable to run with the right > parameters/permissions/ownership/priorities... The benefit of running through a proxy are: a) You don't have to implement plain handing out of static files yourself. b) Your daemon doesn't have to run as "root" (which is the case, if you want it to bind directly to port 80 on the system). And a side-effect of b) is that you may be able to get a cheaper solution since you don't need a complete (virtual) computer just for your site. > It is these (currently, to me, slightly fuzzy) elements that I'd > love to see well described. In Unix you have to be "root" to act as a server on any port in the range 0-1023. IIRC, Apache is started as "root", but downgrades its privileges as soon as it has grabbed port 80. I don't know exactly how it is done. Anybody who wants to put a service directly on the network should understand how to run it with minimal privileges. Although Apache isn't perfect, it is good enough for most of my needs, so I can't see the point in reimplementing all of Apache, just because I want to solve some particular problems which Apache can't handle. Jacob -- "You've got to build bypasses!"