Amolith
/
secluded
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Compare commits

base: Amolith:d56031146b0075bde20804a4c65593ea4a80f48b
Branches Tags
Amolith:main
..
compare: Amolith:1de08d9c91bb129b7cdccdfbbc1531fd133aad9f
Branches Tags
Amolith:main

No commits in common. "d56031146b0075bde20804a4c65593ea4a80f48b" and "1de08d9c91bb129b7cdccdfbbc1531fd133aad9f" have entirely different histories.
d56031146b ... 1de08d9c91

2 changed files with 12 additions and 27 deletions
Show Stats Expand all files Collapse all files

37
content/posts/lxd-containers-for-human-beings.md
View File

@ -1,40 +1,27 @@
---
title: "LXD: Containers for Human Beings"
subtitle: "Docker's great and all, but I prefer the workflow of interacting with VMs"
date: 2023-08-11T16:30:00-04:00
date: 2023-06-14T10:50:41-04:00
categories:
- Technology
- Technology
tags:
- Sysadmin
- Containers
- VMs
- Docker
- LXD
- Sysadmin
- Containers
- VMs
- Docker
- LXD
draft: true
rss_only: false
cover: ./cover.png
---
This is a blog post version of a talk I presented at both Ubuntu Summit 2022 and
This is a blog-post-version of a talk I presented at both Ubuntu Summit 2022 and
SouthEast LinuxFest 2023. The first was not recorded, but the second was and is
on [SELF's PeerTube instance.][selfpeertube] I apologise for the terrible, but
there's unfortunately nothing I can do about that.
[selfpeertube]: https://peertube.linuxrocks.online/w/hjiTPHVwGz4hy9n3cUL1mq?start=1m
{{< adm type="warn" >}}
**Note:** Canonical has decided to [pull LXD out][lxd] from under the Linux
Containers entity and instead continue development under the Canonical brand.
The majority of the LXD creators and developers have congregated around
[Incus.][inc] I'll be keeping a close eye on the project and intend to migrate
as soon as there's an installable release.
[lxd]: https://linuxcontainers.org/lxd/
[inc]: https://linuxcontainers.org/incus/
{{< /adm >}}
## The benefits of VMs and containers
- **Isolation:** we don't want an attacker to get into our webserver and be able
@ -81,9 +68,9 @@ as soon as there's an installable release.
| | Hypervisor | | | .--+---------+---------+---. |
| '--------------+--------------' | | | Host Kernel | |
| .-------------+---------------. | | '--------------------------' |
| | Host Kernel | | '------------------------------'
| | Host Kernel | | '------------------------------'
| '-----------------------------' |
'---------------------------------'
'---------------------------------'
```
## When to use which
@ -94,9 +81,7 @@ as soon as there's an installable release.
- Virtualising non-Linux operating systems (Windows, macOS)
- Completely isolating processes from one another with a decades-old, battle-tested technique
{{< adm type="note" >}}
See Drew DeVault's blog post [_In praise of qemu_](https://earl.run/rmBs) for a great use of VMs
{{< /adm >}}
> See Drew DeVault's blog post [_In praise of qemu_](https://earl.run/rmBs) for a great use of VMs
### Application containers

2
themes/secluded/layouts/_default/single.html
View File

@ -31,7 +31,7 @@
{{ .Content | replaceRE "(<h[1-6] id=\"(.+)\".*>)(.*)(</h[1-6]>)" `${1}${3} <a class="anchor-tag" ariaLabel="Anchor" href="#${2}"></a>${4}` | safeHTML }}
</div>
<hr/>
<div class="content"><p>This is a self-hosted <a href="https://commento.io/">Commento</a> server that integrates with <a href="https://akismet.com/">Akismet</a> for spam filtration. Comments that make it through are still subject to moderator (me) approval before they're displayed publicly.</p></div>
<div class="content"><p>I'm experimenting with comments for a couple of months. This is a self-hosted <a href="https://commento.io/">Commento</a> server, so none of the information entered here goes through any third parties, just my own systems.</p></div>
<script defer src="https://commento.secluded.site/js/commento.js"></script>
<div id="commento"></div>
<hr/>