From 55d767aa718da8547db849010e682fc9030e0928 Mon Sep 17 00:00:00 2001 From: Amolith Date: Wed, 16 Aug 2023 13:34:57 -0600 Subject: [PATCH] add some work to the LXD post --- .../posts/lxd-containers-for-human-beings.md | 37 +++++++++++++------ 1 file changed, 26 insertions(+), 11 deletions(-) diff --git a/content/posts/lxd-containers-for-human-beings.md b/content/posts/lxd-containers-for-human-beings.md index a8044a5..3751cf4 100644 --- a/content/posts/lxd-containers-for-human-beings.md +++ b/content/posts/lxd-containers-for-human-beings.md @@ -1,27 +1,40 @@ --- title: "LXD: Containers for Human Beings" subtitle: "Docker's great and all, but I prefer the workflow of interacting with VMs" -date: 2023-06-14T10:50:41-04:00 +date: 2023-08-11T16:30:00-04:00 categories: -- Technology + - Technology tags: -- Sysadmin -- Containers -- VMs -- Docker -- LXD + - Sysadmin + - Containers + - VMs + - Docker + - LXD draft: true rss_only: false cover: ./cover.png --- -This is a blog-post-version of a talk I presented at both Ubuntu Summit 2022 and +This is a blog post version of a talk I presented at both Ubuntu Summit 2022 and SouthEast LinuxFest 2023. The first was not recorded, but the second was and is on [SELF's PeerTube instance.][selfpeertube] I apologise for the terrible, but there's unfortunately nothing I can do about that. [selfpeertube]: https://peertube.linuxrocks.online/w/hjiTPHVwGz4hy9n3cUL1mq?start=1m +{{< adm type="warn" >}} + +**Note:** Canonical has decided to [pull LXD out][lxd] from under the Linux +Containers entity and instead continue development under the Canonical brand. +The majority of the LXD creators and developers have congregated around +[Incus.][inc] I'll be keeping a close eye on the project and intend to migrate +as soon as there's an installable release. + +[lxd]: https://linuxcontainers.org/lxd/ +[inc]: https://linuxcontainers.org/incus/ + +{{< /adm >}} + ## The benefits of VMs and containers - **Isolation:** we don't want an attacker to get into our webserver and be able @@ -68,9 +81,9 @@ there's unfortunately nothing I can do about that. | | Hypervisor | | | .--+---------+---------+---. | | '--------------+--------------' | | | Host Kernel | | | .-------------+---------------. | | '--------------------------' | -| | Host Kernel | | '------------------------------' +| | Host Kernel | | '------------------------------' | '-----------------------------' | -'---------------------------------' +'---------------------------------' ``` ## When to use which @@ -81,7 +94,9 @@ there's unfortunately nothing I can do about that. - Virtualising non-Linux operating systems (Windows, macOS) - Completely isolating processes from one another with a decades-old, battle-tested technique -> See Drew DeVault's blog post [_In praise of qemu_](https://earl.run/rmBs) for a great use of VMs +{{< adm type="note" >}} +See Drew DeVault's blog post [_In praise of qemu_](https://earl.run/rmBs) for a great use of VMs +{{< /adm >}} ### Application containers