Muayyad Alsadi

> So you had both SELinux and AppArmor on the same system? No i manage both ubuntu and centos/fedora on production both with mac enabled. I thought this is obvious!

> Why AppArmor can not lock processes to the guest/container it belongs to? Containers are deployed with distinct users, AppArmor can set permissions by user. I would appreciate if you...

@raulvo if you opened the wordpress link above you would see the status of both, if you cared to look you had seen that flatpak in the official repos of...

My suggestion to you is to use wsgi standard and use uwsgi to serve it. I'll look into this to see where is the leak come from.

wsgi is just a callable that accepts two arguments `env` dict and `start_response` function (to indicate response code and headers) and then return the body iterable, like this ```python #...

I took a look at your code, I don't see any obvious leak, are you sure that `self.handle_request(js)` does not have a leak ``` def __init__(self, *args, **kwargs): self.handle_request =...

BTW uwsgi has the following options, even if your `handle_request(js)` has a leak, it can configured to start fresh after number of requests or passing time. ``` -R|--max-requests reload workers...

hmmm, there is no known bugs. but regarding py3 I'll look into it and see what I can do.

`2to3` suggests replacing `SocketServer` with `socketserver` but since I used internal methods this might not be sufficient

to be fair, `--no-deps` only makes sense with run not with up. but I'll look into it.