Rik Bobbaers wrote:
stable: yes, secure... well... as far as possible, BUT!
multipath using devicemapper in their kernel? almost impossible, unless the
backported that entirely from 2.6.13 (of some 2.6.12 rcX)
a lot of other enhancements in 2.6.8+ kernels... it's for a reason that
kernels get updated, you know...
Current OpenVZ kernel has more than 200 patches backported from mainstream.
Second is resource management. There are a lot of resources that can be
abused from inside VServer guest or OpenVZ VPS, leading to at least DoS;
some of those resources are not under control of traditional UNIX means
such as ulimit. In OpenVZ we have User Beancounters (UBC for short),
which accounts and limits about 20 of such resources (including IPC
objects, various kernel buffers etc).
there is a decent resource management in vserver too... it's not easy at all
to dos an entire vserver. (you have rlimits map for every vserver if you
want, where you can choose what the limits are)
I am really interested in comparison of OpenVZ's and VServer's resource
management.
_______________________________________________
Vserver mailing list
[email protected]
http://list.linux-vserver.org/mailman/listinfo/vserver
