Recent Comments
Ahmed on Connecting containers on sever… s3hh on Connecting containers on sever… Dhananjay Sathe on Connecting containers on sever… Norberto on LXC – improved clone… s3hh on LXC – improved clone…
Author Archives: s3hh
2013 Linux Security Summit CFP closing soon
Just a short reminder that if you were interested in submitting a talk for the linux security summit, the call for participation (at http://kernsec.org/wiki/index.php/Linux_Security_Summit_2013) will be closing tomorrow, Friday Jun 14. The summit will be held September 19-20 in New … Continue reading
Posted in Uncategorized
Leave a comment
Introducing lxc-snap
lxc-snap: lxc container snapshot management tool BACKGROUND Lxc supports containers backed by overlayfs snapshots. The way this is typically done is to create a container backed by a regular directory, then create a new container which mounts the first container’s … Continue reading
LXC – improved clone support
Recently I took some time to work on implementing container clones through the lxc API. lxc-clone previously existed as a shell script which could create snapshot clones of lvm and btrfs containers. There were several shortcomings to this: 1. clone … Continue reading
gtd – managing projects
I learned about GTD 5 or 8 years ago, and pretty immediately was trying to use it. Ever since then I keep all of my information in one gtd folder, with Projects and Reference folders, a nextactions file, etc. I’ve … Continue reading
Qemu updates in raring
The raring feature freeze took effect last week. What’s been happening with qemu in the meantime? A lot! I’ll touch on the following main changes in this post: package reorg, spice support, hugepages, uefi, and rbd support. * package reorg … Continue reading
Experimenting with user namespaces
User namespaces are a really neat feature, but there are some subtleties involved which can make them perplexing to first play with. Here I’m going to show a few things you can do with them, with an eye to explaining … Continue reading
User Namespaces LXC meeting
Last week we held an irc meeting to talk about user namespaces as they relate to lxc containers. The IRC log is posted at https://wiki.ubuntu.com/LxcUsernsIrcChat . I had two goals for this meeting. The first was to make sure that … Continue reading
Call for testing: new qemu packages for raring
tl;dr If you use qemu, kvm, or qemu-user in raring, please test the candidate packages in ppa:serge-hallyn/crossc. Background The qemu and kvm projects historically had somewhat different code bases with some different features and advantages. For years they have been … Continue reading
Full Ubuntu container confined in a user namespace
I’ve mentioned user namespaces here before, and shown how to play a bit with them. When a task is cloned into a new user namespace, the uids in the namespace can be mapped (1-1, in blocks) to uids on the … Continue reading
deploying multiple (connected) lxc compute nodes – with juju
This post got delayed a bit due to a few unexpected complications. First, it turns out that you cannot connect GRE tunnels in Amazon’s EC2 over the instances’ private addresses. You must use the public addresses. Second, quantal removed the … Continue reading
