Re: [dev] containers opinion

2016-09-23 Thread Anselm R Garbe
On 23 September 2016 at 19:19, stephen Turner wrote: > whats the suckless view of containers and why? what about a Containers are an indicator of conceptual decay. Application developer code has now become infrastructure and is due to the juniority far away from any

Re: [dev] containers opinion

2016-09-23 Thread hiro
> Docker daemon is a single, statically > linked binary. that's irrelevant. you still need the right version of loonix with namespaces support, etc. containers are not independent of the operating system.

Re: [dev] containers opinion

2016-09-23 Thread Kamil CholewiƄski
On Fri, 23 Sep 2016, stephen Turner wrote: > whats the suckless view of containers and why? what about a > containerized init helper where sinit calls the container program and > then runs daemons and the rest of the system from containers? Do you > feel containers

Re: [dev] containers opinion

2016-09-23 Thread Ben Woolley
> On Sep 23, 2016, at 12:18 PM, hiro <23h...@gmail.com> wrote: > > containers are there to emulate static linking or the common portable > windows programs in the form of a single .exe > > there is no security benefit of running more people's software on your > computer. > I am reminded of

Re: [dev] containers opinion

2016-09-23 Thread Daniel Abrecht
I am new here. I am using devuan + libvirt + lxc containers. I think in terms of security, it's less secure than a VM, since it shares the kernel & resources with the host system. But I think it's easier to backup & update containers. I like that I can just copy a container to another computer,

Re: [dev] containers opinion

2016-09-23 Thread hiro
containers are there to emulate static linking or the common portable windows programs in the form of a single .exe there is no security benefit of running more people's software on your computer.

Re: [dev] containers opinion

2016-09-23 Thread Thomas Levine
My personal view is that separate users are enough software separation for everything that I have ever wanted to do. Dunno about the party line though. On Fri, Sep 23, 2016, at 05:19 PM, stephen Turner wrote: > whats the suckless view of containers and why? what about a > containerized init

[dev] containers opinion

2016-09-23 Thread stephen Turner
whats the suckless view of containers and why? what about a containerized init helper where sinit calls the container program and then runs daemons and the rest of the system from containers? Do you feel containers offer additional security/stability? Just thinking about "cloud" stuff again and