The Linux Performance and Security Blog

Understanding Nginx tail latencies

We traced Nginx running on a 80 CPU server as a CDN node in one of the world largest Internet exchange point. We revealed that a ligh-weight monitoring process may cause severe latencies due to the Linux CPU scheduler. During the investigations we had a lot of fun with eBPF and perf.

Posted on February 23, 2022

Lean video conferencing billing - keep it simple, make it fast!

Learn how to build a high performance billing system for video conferencing services. This article studies the case of a lean startup who we helped to with building the system. We focus not only on the system performance, but also how to make it with as low budget as possible.

Posted on July 23, 2021

Performance of ORDER BY over text columns in MariaDB and MySQL

It might sound strange, but database performance does depend on used encodings. In this post we explore why and compare performance on different encodings for MariaDB and MySQL.

Posted on July 5, 2021

Non-hierarchical caching for CDN

The recent paper "The Storage Hierarchy is Not a Hierarchy: Optimizing Caching on Modern Storage Devices with Orthus" proposes interesting extension for traditional caching. The approach might be beneficial in Video on demand (VOD) content delivery networks (CDN) challenged by large amount of stored data and high throughput requirements.

Posted on April 29, 2021

Fast programming languages: C, C++, Rust, and Assembly

We explore several practical performance critical tasks and how they can be solved in C, C++, Rust, and Assembly programming languages. We mostly focus on the speed, but also consider developer productivity and the programs safety. You might be surprised that solving some tasks in Assembly might be more productive than in C programming language!

Posted on October 28, 2020

Tempesta Technologies supports small businesses in Seattle and beyond

Small businesses are the backbone of the American economy, but the COVID 19 pandemic hurts the sector more than most. That is why our mission is to help small businesses grow even during these difficult times.

Posted on June 22, 2020

User space TCP?

Kernel bypass technologies like DPDK and Netmap are popular for development of high speed network applications. In this article we discuss user space TCP/IP stacks and their applicability for HTTPS servers.

Posted on June 15, 2020

Web application firewall acceleration

From our experience in developing custom core logic of Web Application Firewalls (WAF), we learned several performance issues typical for the most, or even all, modern WAFs which may lead to high cost of ownership and/or denial of service. In this article we introduce a WAF accelerator, which like a web accelerator, improves performance of WAFs and protects them against DDoS attacks.

Posted on March 25, 2020

CPDoS: Cache Poisoned Denial of Service

Being a light-weight web application firewall, Tempesta FW takes care about prevention of well-known web cache deception and poisoning attacks. However, recently a new attack of the web cache poisoning class, Cache-Poisoned Denial-of-Service (CPDoS), has appeared and made us to extend our HTTP parser to prevent the attack.

Posted on December 12, 2019

Review of Google Snap paper

Read our review of Google paper "Snap: a Microkernel Approach to Host Networking" presented on ACM SIGOPS 27th Symposium on OperatingSystems Principles (SOSP 2019). We compare the Snap approach with Temepsta FW synchronous sockets.

Posted on November 14, 2019


Pages:  1 2