Pivotal Labs
Spongecell
Bleacher Report
Uservoice
Technology Stack
The Engine Yard Technology Stack is a standardized Ruby on Rails web application framework stack, designed and optimized for business-critical Ruby on Rails application development. The stack has been refined over the past three years by our team of leading Ruby on Rails contributors, expert cluster engineers and seasoned DBAs for web server performance, database efficiency and long-term scalability. The team continues to test and fully integrate each new component and component update to provide reliability, security and compatibility within the stack.
The Engine Yard Technology Stack includes:
- Ruby on Rails Application Framework
- Nginx+Mongrel, Nginx+Passenger and Apache+Passenger Web Servers
- MySQL and PostgreSQL Databases
- Gentoo Linux Operating System
Engine Yard Technology Stack
Our stack is continually expanding. This version is correct as of June 15th, 2009.
| Category | Component | Engine Yard Recommends | Cloud Support | Slice Support |
Versions to avoid
and other comments |
|---|---|---|---|---|---|
| Ruby Interpreters | MRI | 1.8.6.369 (patched) | 1.8.6.p369 (patched) | 1.8.6.p369 (patched) |
1.8.5 and below
1.8.6.p368 and below 1.8.7.p171 and below (multiple vulnerabilities) http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=ruby |
| JRuby | — | — | — | JRuby support will be in beta in July for Cloud only | |
| Frameworks | Rails |
2.3.2
(with http auth workarounds) |
2.3.2
2.2.2 2.1.2 2.0.1→5 1.2.0→5 1.1.0→6 |
2.3.2
2.2.2 2.1.2 2.0.1→5 1.2.0→5 1.1.0→6 |
2.1.1 and below
(multiple vulnerabilities) http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=rails 2.3.2 has a serious vulnerability in http auth. Customers should follow instructions to workaround. http://groups.google.com/group/... |
| Merb | 1.0.11 | 1.0.11 | 1.0.11 | Engine Yard recommends latest release of 1.0 line with latest bug fixes | |
| Web/App | nginx | 0.6.35 | 0.6.35 |
0.5.37
0.6.35 |
|
| mongrel | 1.1.5.1 | 1.1.5.1 | 1.1.5.1 |
1.1.3 and below
(multiple vulnerabilities) http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-6612 |
|
| nginx/psgr | 0.6.35/2.2.2 | 0.6.35/2.2.2 | 0.6.35/2.2.2 | None | |
| apache/psgr | 2.2.1/2.2.2 | 2.2.1/2.2.2 | — | ||
| thin | 1.0 | 1.0 |
1.2.1
1.0 |
None | |
| rack | 1.0.0 |
1.0.0
0.9.1 |
1.0.0 |
All versions prior to 0.9.1 (vulnerability)
http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-talk/324389 |
|
| Databases | MySQL | 5.0.51 | 5.0.51 |
5.0.77
5.0.51 5.0.45 |
5.1 before 5.1.34
(multiple vulnerabilities) 5.0 before 5.0.45 (multiple vulnerabilities) http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=mysql |
| Postgres | 8.3.7 | — |
8.2.13+
8.3.7+ |
All 8.2.x versions prior to 8.2.13
all 8.3.x versions prior to 8.3.7 http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=postgresql |
|
| Caches & Stores | memcached | 1.2.6 | 1.2.6 |
1.2.6
1.1.13 |
|
|
Tokyo
..Cabinet ..Tyrant ..Dystopia |
v
1.4.23 1.1.28 0.9.11 |
v
— |
v
1.4.x 1.1.x 0.9.x |
||
| Redis | 0.100 | .100 | — | ||
| OS | Gentoo | EY Portage | EY Portage | EY Portage | |
| Background Job Processor |
delayed_job
BackgroundJob |
1.7.0
1.0.1 |
GEM Installable |
1.7.0
1.0.1 |
We recommend use of the latest versions
We recommend against use of BackgroundRB |
| Other |
Sphinx
(+Thinking Sphinx) |
0.9.8.1 | — | 0.9.8.1 | |
| AVOID | awstats | N/A | — | — | awstats is no longer supported within any EY environment. We recommend use of Google Analytics in its stead. |
| Ferret | N/A | — | — | EY recommends against use of any version of Ferret | |
This listing is not exhaustive, but covers the essential components of the Engine Yard Stack. We also support the installation and configuration of other commonly used components such as solr, but we do not provide in depth expertise in these components.
