Re: Debian dev-machine best practice? was: keybase.io

To: Thomas Koch <thomas@koch.ro>
Cc: debian-project@lists.debian.org
Subject: Re: Debian dev-machine best practice? was: keybase.io
From: Ian Jackson <ijackson@chiark.greenend.org.uk>
Date: Wed, 30 Apr 2014 13:06:44 +0100
Message-id: <[🔎] 21344.59220.760021.256393@chiark.greenend.org.uk>
In-reply-to: <[🔎] 201404251107.57998.thomas@koch.ro>
References: <[🔎] 201404251107.57998.thomas@koch.ro>

Thomas Koch writes ("Debian dev-machine best practice? was: keybase.io"):
> I'm planning to improve my paranoia once I become a DD. [...]
> 
> I'm longing for linux containers to become usable for noobs like me. Than I 
> could move untrusted applications from virtual machines into unprivileged 
> containers (running without root privileges).

That sounds like a substantial _reduction_ in your level of security
(or, of paranoia, as you put it).  The containment security of virtual
machines is much better than that of Linux containers.  I agree with
the reply from Ben Hutchings.

Ian.

Reply to:

References:
- Debian dev-machine best practice? was: keybase.io
  - From: Thomas Koch <thomas@koch.ro>

Prev by Date: General Resolution: Code of conduct results
Previous by thread: Re: Debian dev-machine best practice? was: keybase.io
Next by thread: Trusted Organisation status for DebConf15's legal entity
Index(es):
- Date
- Thread