On Mon, May 14, 2012 at 03:04:20PM +0200, Toni Mueller wrote:
> > to support in Debian; another is that it is really helpful for web
> > applications to be able to give an entirely independent installation to
> > each major site rather than trying to share the same code. For another
>
> Ack. That's also one factor driving the demand for virtual servers (xen,
> kvm, you-name-it).
This reminds me: is anyone going to bring back vserver or openvz in some
form? Otherwise, wheezy would end up with no containers. Xen does kernel
virtualization and thus takes an order of magnitude more memory, lxc is not
supposed to be secure (it provides a chroot with usage limits, but no
isolation).
I for one wouldn't be too comfortable handling a major security feature
myself, but then, a single ill-prepared person applying such a patch is
better than hundreds or thousands of admins doing that themselves.
Vserver's upstream has been in maintenance mode[1] for quite some time, but
they fix bugs and port to new kernel versions nearly immediately.
[1]. Because "lxc will be ready 'soon'".
--
“This is gonna be as easy as cheating on an ethics exam!”
-Cerise Brightmoon
Attachment:
signature.asc
Description: Digital signature