Comments for Things on a content management system http://cqdump.wordpress.com Tips and tricks for Day Communique Tue, 17 Nov 2009 18:00:33 +0000 http://wordpress.com/ hourly 1 Comment on Basic performance tuning: Caching by Chris Pilsworth http://cqdump.wordpress.com/2009/11/04/basic-performance-tuning-caching/#comment-73 Chris Pilsworth Tue, 17 Nov 2009 18:00:33 +0000 http://cqdump.wordpress.com/?p=273#comment-73 Hi Jörg, The technique you describe is one we have used with great success on some of our projects. However, we use longer expiration times and use the CQ4 Mapper to rewrite the URLs when new versions of static application resources such as CSS, JS, PNG are published. I have written a little bit more about it on my blog: http://cqstuff.blogspot.com/2009/11/improving-day-cq-performance-using.html Regards, Chris Hi Jörg,

The technique you describe is one we have used with great success on some of our projects. However, we use longer expiration times and use the CQ4 Mapper to rewrite the URLs when new versions of static application resources such as CSS, JS, PNG are published.

I have written a little bit more about it on my blog:

http://cqstuff.blogspot.com/2009/11/improving-day-cq-performance-using.html

Regards,

Chris

]]> Comment on Take care of your selectors! by Stejan http://cqdump.wordpress.com/2009/05/06/take-care-of-your-selectors/#comment-51 Stejan Fri, 08 May 2009 10:49:09 +0000 http://cqdump.wordpress.com/?p=180#comment-51 The last sentence is soooo right;) The last sentence is soooo right;)

]]> Comment on Take care of your selectors! by jhoh228 http://cqdump.wordpress.com/2009/05/06/take-care-of-your-selectors/#comment-50 jhoh228 Fri, 08 May 2009 08:18:20 +0000 http://cqdump.wordpress.com/?p=180#comment-50 Hi stejan You're right, in reality it's the easier way to remove parts of the cache; but if someone is misusing your system, you need tot make sure that you only remove the files, which are not requested from a "regular" user. Otherwise your cache-hit ratio in the dispatcher goes down quite dramatically and your CQ will probably overload. Then you need to think about if the dispatcher is useful at all. So your objective is to keep garbage out of the dispatcher cache, so you don't need to clear you dispatcher cache every once in a while. Regarding whitelisting: Yes, it may be a pain in the ass to keep your whitelists up to date. Maybe you don't know every selector, because they are dynamically created. But at one point you have to start. Security isn't that easy :-) Hi stejan

You’re right, in reality it’s the easier way to remove parts of the cache; but if someone is misusing your system, you need tot make sure that you only remove the files, which are not requested from a “regular” user. Otherwise your cache-hit ratio in the dispatcher goes down quite dramatically and your CQ will probably overload. Then you need to think about if the dispatcher is useful at all.

So your objective is to keep garbage out of the dispatcher cache, so you don’t need to clear you dispatcher cache every once in a while.

Regarding whitelisting: Yes, it may be a pain in the ass to keep your whitelists up to date. Maybe you don’t know every selector, because they are dynamically created. But at one point you have to start. Security isn’t that easy :-)

]]> Comment on Take care of your selectors! by stejan http://cqdump.wordpress.com/2009/05/06/take-care-of-your-selectors/#comment-49 stejan Fri, 08 May 2009 07:08:54 +0000 http://cqdump.wordpress.com/?p=180#comment-49 I accept the dos example, but the password?! only a few people know about the caching of the system. So i have to know that the system makes a new file on diskspace if i call the page with other selectors. --> thats the reason why I ask: Who should do that? but your right. this is a problem, but on my opinion, there should be disk monitoring to check the disk size and if the free disk size is less than a configured amount then an automatic clean (delete dispatcher cache) should happen. you can't ever react on each selector/extension on this world you will always miss some. and you can't garantie that each techie now about the whitelist. sometime there should be a fast reaction on a problem an then you will forget it. and an implementation of a whitelist, costs a lot of money and as shown above you can't get everything a monitoring & cleaning version costs perhaps a tool or 1 day of configuration and thats it I accept the dos example, but the password?!

only a few people know about the caching of the system. So i have to know that the system makes a new file on diskspace if i call the page with other selectors. –> thats the reason why I ask: Who should do that?

but your right. this is a problem, but on my opinion, there should be disk monitoring to check the disk size and if the free disk size is less than a configured amount then an automatic clean (delete dispatcher cache) should happen.

you can’t ever react on each selector/extension on this world
you will always miss some.

and you can’t garantie that each techie now about the whitelist. sometime there should be a fast reaction on a problem an then you will forget it.

and an implementation of a whitelist, costs a lot of money and as shown above you can’t get everything

a monitoring & cleaning version costs perhaps a tool or 1 day of configuration and thats it

]]> Comment on Take care of your selectors! by jhoh228 http://cqdump.wordpress.com/2009/05/06/take-care-of-your-selectors/#comment-48 jhoh228 Fri, 08 May 2009 06:41:06 +0000 http://cqdump.wordpress.com/?p=180#comment-48 Yes, it also applies to extensions. Why would one ever trying to login using the root-account on a foreign computer for which he hasn't the allowance to do so? Why would some people running denial of service actions against internet websites? If there's a possibility to misuse a feature, people will sooner or later misuse it, usually without the knowledge of the owner ... Yes, it also applies to extensions.

Why would one ever trying to login using the root-account on a foreign computer for which he hasn’t the allowance to do so? Why would some people running denial of service actions against internet websites? If there’s a possibility to misuse a feature, people will sooner or later misuse it, usually without the knowledge of the owner …

]]> Comment on Take care of your selectors! by Stejan http://cqdump.wordpress.com/2009/05/06/take-care-of-your-selectors/#comment-47 Stejan Fri, 08 May 2009 04:47:13 +0000 http://cqdump.wordpress.com/?p=180#comment-47 The same thing you have to do for the extensions. ;) But why should it happen that a wrong selector or extension will be called? A wrong implementation? Users that calls the wrong pages? The same thing you have to do for the extensions. ;)
But why should it happen that a wrong selector or extension will be called?
A wrong implementation?
Users that calls the wrong pages?

]]> Comment on Creating cachable content using selectors by Wordpress Blog Services - Take care of your selectors! http://cqdump.wordpress.com/2009/04/10/creating-cachable-content-using-selectors/#comment-46 Wordpress Blog Services - Take care of your selectors! Thu, 07 May 2009 11:07:22 +0000 http://cqdump.wordpress.com/?p=150#comment-46 [...] I have shown two scenarios, where selectors can be used as a way to cache several different views of a single page. This [...] [...] I have shown two scenarios, where selectors can be used as a way to cache several different views of a single page. This [...]

]]> Comment on Permission sensitive caching by Wordpress Blog Services - Take care of your selectors! http://cqdump.wordpress.com/2009/04/22/permission-sensitive-caching/#comment-45 Wordpress Blog Services - Take care of your selectors! Thu, 07 May 2009 11:07:18 +0000 http://cqdump.wordpress.com/?p=161#comment-45 [...] I have shown two scenarios, where selectors can be used as a way to cache several different views of a single page. [...] [...] I have shown two scenarios, where selectors can be used as a way to cache several different views of a single page. [...]

]]> Comment on Creating cachable content using selectors by Take care of your selectors! « Things on a content management system http://cqdump.wordpress.com/2009/04/10/creating-cachable-content-using-selectors/#comment-43 Take care of your selectors! « Things on a content management system Wed, 06 May 2009 22:13:36 +0000 http://cqdump.wordpress.com/?p=150#comment-43 [...] care of your selectors! By jhoh228 Recently I have shown two scenarios, where selectors can be used as a way to cache several different views of a single page. This [...] [...] care of your selectors! By jhoh228 Recently I have shown two scenarios, where selectors can be used as a way to cache several different views of a single page. This [...]

]]> Comment on Permission sensitive caching by Take care of your selectors! « Things on a content management system http://cqdump.wordpress.com/2009/04/22/permission-sensitive-caching/#comment-42 Take care of your selectors! « Things on a content management system Wed, 06 May 2009 22:13:30 +0000 http://cqdump.wordpress.com/?p=161#comment-42 [...] Things on a content management system Tips and tricks for Day Communique « Permission sensitive caching [...] [...] Things on a content management system Tips and tricks for Day Communique « Permission sensitive caching [...]

]]>