Vulnerability in EPiServer.Forms
Running all modules for all request is considering a bad practice ()
Is it possible to configure Episerver to run without it?
More info here:
Its a really old post from the days where running the Integrated AppPool wasn't the norm,
most none native modules are registered with the preCondition="managedHandler" so they will only be executed if the request handler is written in managed code,
so the performance hit you get from running with runAllManagedModulesForAllRequests="true" isn't that big.