X-Git-Url: https://git.decadent.org.uk/gitweb/?a=blobdiff_plain;ds=sidebyside;f=index.html;h=37a37c89cfac9ca1b45b123a43ea0ab102e757fa;hb=2891ac76b197ab6baa5e14f42d62359716bfec94;hp=7d5018d6d296fd2bb04a93905f9ebb4f59a04be9;hpb=edee31bcd5737cc994db909eb75d0b54535ee3c6;p=kernel-news-talk.git
diff --git a/index.html b/index.html
index 7d5018d..37a37c8 100644
--- a/index.html
+++ b/index.html
@@ -202,23 +202,28 @@
-
User namespaces [3.7]
+
More support for containers
-
- One of the last missing pieces for OpenVZ-like containers
+ Containers are lightweight VMs - run on the same kernel as host,
+ but with limited privileges and resources
-
- Each user namespace has its own root user with
- privileges over the users and processes in that namespace - but
- not the whole system
+ Previously done by OpenVZ and Linux-VServer; gradually being
+ reimplemented upstream
+
+ -
+ User namespaces (added in 3.7) support the existence of a
+ root user inside the container that is unprivileged
+ outside the container
-
Currently somewhat experimental, and requires filesystem
changes which haven't been done for XFS
-
- Make it work: send patches to upstream XFS developers (this
- one's hard)
+ Make user namespaces work: send patches to upstream XFS
+ developers (this one's hard)