[rt-users] Apache2 CPU hungry !

Michele Pinassi michele.pinassi at unisi.it
Wed Oct 26 03:21:51 EDT 2011


Hi all,

my RT 4.0.2 installation is too CPU hungry, expecially for apache2
threads. Here's the HTOP display of processes and threads:
http://imageshack.us/photo/my-images/810/schermatagf.png/

Page reponse was very slow and RT is not so usable :-(

My RT work under SSL and this is apache2's config:

<IfModule mod_ssl.c>
<VirtualHost _default_:443>
    ServerAdmin webmaster at tickets.unisi.it

    DocumentRoot "/opt/rt4/share/html"

        <Location />
                Order allow,deny
                Allow from all

                SetHandler perl-script
                PerlResponseHandler Plack::Handler::Apache2
                PerlSetVar psgi_app /opt/rt4/sbin/rt-server
        </Location>
        <Perl>
                use Plack::Handler::Apache2;
                Plack::Handler::Apache2->preload("/opt/rt4/sbin/rt-server");
        </Perl>

    ErrorLog ${APACHE_LOG_DIR}/error.log
    LogLevel warn
    CustomLog ${APACHE_LOG_DIR}/ssl_access.log combined
    SSLEngine on
    ...
    BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown

</VirtualHost>
</IfModule>

And this is my RT_SiteConfig.pm:

root at tickets:/opt/rt4/etc# cat RT_SiteConfig.pm

Set($rtname, 'tickets.unisi.it');

Set($WebDomain, 'tickets.unisi.it');

Set($Organization, "unisi.it");

Set($Timezone, "IT/Rome");

Set($JSMinPath, "/usr/bin/jsmin");

# Set($WebPort, 443);

Set(@Plugins, (qw(RT::Extension::JSGantt RTx::Calendar
RT::Authen::ExternalAuth)));

Set($LogToFile, 1);
Set($LogDir, q{var/log});
Set($LogToFileNamed, "rt.log");    #log to rt.log

Set($HomepageComponents, [qw(QuickCreate Quicksearch MyCalendar
MyAdminQueues MySupportQueues MyReminders RefreshHomepage)]);

Set($ICalTicketType,   "Data::ICal::Entry::Event");
Set($ICalReminderType ,"Data::ICal::Entry::Todo");

Set($LDAPHost,'ldap://[ldap server]');
Set($LDAPUser,'cn=[user],ou=admin,dc=unisi,dc=it');
Set($LDAPPassword,'[pass]');
Set($LDAPBase, 'dc=unisi,dc=it');
Set($LDAPFilter, '(objectclass=Unisiperson)');

Set($LDAPMapping, {Name => 'uid',
EmailAddress => 'mail',
RealName => 'cn'});

Set($LDAPGroupName,'Unisi');
Set($LDAPUpdateUsers,1);

Set($ExternalAuthPriority,  [ 'My_LDAP' ]);
Set($ExternalInfoPriority,  [ 'My_LDAP' ]);

Set($ExternalServiceUsesSSLorTLS,    0);
Set($AutoCreateNonExternalUsers,    1);

Set($ExternalSettings,      {
                                'My_LDAP'       =>  { 
                                                        # The type of
service (db/ldap/cookie)
                                                       
'type'                      =>  'ldap',
                                                        # The server
hosting the service
                                                       
'server'                    =>  '[ldap server]',
                                                        ##
SERVICE-SPECIFIC SECTION
                                                        # If you can
bind to your LDAP server anonymously you should
                                                        # remove the
user and pass config lines, otherwise specify them here:
                                                        #
                                                        # The username
RT should use to connect to the LDAP server
                                                       
'user'                      =>  'cn=[user],ou=admin,dc=unisi,dc=it',
                                                        # The password
RT should use to connect to the LDAP server
                                                       
'pass'                    =>  '[pass]',
                                                        #
                                                        # The LDAP
search base
                                                       
'base'                      =>  'dc=unisi,dc=it',
                                                        #
                                                        # ALL FILTERS
MUST BE VALID LDAP FILTERS ENCASED IN PARENTHESES!
                                                        # YOU **MUST**
SPECIFY A filter AND A d_filter!!
                                                        #
                                                        # The filter to
use to match RT-Users
                                                       
'filter'                    =>  '(objectclass=Unisiperson)',
                                                        # A catch-all
example filter: '(objectClass=*)'
                                                        #
                                                        # The filter
that will only match disabled users
                                                       
'd_filter'                  =>  '(objectclass=FooBar)',
                                                        # A catch-none
example d_filter: '(objectClass=FooBarBaz)'
                                                        #
                                                        # Should we try
to use TLS to encrypt connections?
                                                       
'tls'                       =>  0,
                                                        # SSL Version to
provide to Net::SSLeay *if* using SSL
                                                       
'ssl_version'               =>  3,
                                                        # What other
args should I pass to Net::LDAP->new($host, at args)?
                                                       
'net_ldap_args'             => [    version =>  3   ],
                                                       
'attr_match_list'           => [    'uid',
                                                                                           
'mail',
                                                                                           
'cn'
                                                                                       
],
                                                        # The mapping of
RT attributes on to LDAP attributes
                                                       
'attr_map'                  =>  {   'Name' => 'uid',
                                                                                           
'EmailAddress' => 'mail',
                                                                                           
'RealName' => 'cn'
                                                                                       
}
                                                    }
                        }
);

1;

Any ideas how to speed up ?

-- 
Michele Pinassi
Servizio Reti, Sistemi e Sicurezza Informatica
Università degli Studi di Siena
tel: 0577.(23)2169
https://sites.google.com/a/unisi.it/o-zone/


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 262 bytes
Desc: OpenPGP digital signature
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20111026/41f2a344/attachment.sig>


More information about the rt-users mailing list