Author Archives: s3hh

libvirt defaults (and openvswitch bridge performance)

The libvirt-bin package in Ubuntu installs a default NATed virtual network, virbr0. This isn’t always the best choice for everyone, however it “just works” everywhere. It also provides some simple protection – the VMs aren’t exposed on the network for … Continue reading

Posted in Uncategorized | Tagged , , , | 4 Comments

Line buffering (and talking computers and irc meetings)

When I was a kid, I wanted computers to talk to me (and vice versa). Why, decades later, am I still squinting at the screen during hour-long irc meetings? Basta! So the last two weeks I’ve been listening to our … Continue reading

Posted in Uncategorized | 2 Comments

Creating and using containers – without privilege

Today I posted a (working but mainly POC) patchset against lxc which allows me to create and start ubuntu-cloud containers – completely as an unprivileged user. For more details see the introductory email to the patchset at http://sourceforge.net/mailarchive/forum.php?thread_name=1374246151-7069-9-git-send-email-serge.hallyn%40ubuntu.com&forum_name=lxc-devel Glossing over … Continue reading

Posted in Uncategorized | Tagged , | 3 Comments

RSS

When I saw the news that Google reader was going away, my first thought, like a lot of other people, was “woohoo, it’s going to be fun writing a new way to follow RSS.” This past weekend I looked at … Continue reading

Posted in Uncategorized | 2 Comments

2013 Linux Security Summit CFP closing soon

Just a short reminder that if you were interested in submitting a talk for the linux security summit, the call for participation (at http://kernsec.org/wiki/index.php/Linux_Security_Summit_2013) will be closing tomorrow, Friday Jun 14. The summit will be held September 19-20 in New … Continue reading

Posted in Uncategorized | Leave a comment

Introducing lxc-snap

lxc-snap: lxc container snapshot management tool BACKGROUND Lxc supports containers backed by overlayfs snapshots. The way this is typically done is to create a container backed by a regular directory, then create a new container which mounts the first container’s … Continue reading

Posted in Uncategorized | Tagged , | 13 Comments

LXC – improved clone support

Recently I took some time to work on implementing container clones through the lxc API. lxc-clone previously existed as a shell script which could create snapshot clones of lvm and btrfs containers. There were several shortcomings to this: 1. clone … Continue reading

Posted in Uncategorized | Tagged , | 11 Comments

gtd – managing projects

I learned about GTD 5 or 8 years ago, and pretty immediately was trying to use it. Ever since then I keep all of my information in one gtd folder, with Projects and Reference folders, a nextactions file, etc. I’ve … Continue reading

Posted in Uncategorized | Tagged | 2 Comments

Qemu updates in raring

The raring feature freeze took effect last week. What’s been happening with qemu in the meantime? A lot! I’ll touch on the following main changes in this post: package reorg, spice support, hugepages, uefi, and rbd support. * package reorg … Continue reading

Posted in Uncategorized | Tagged , , , | Leave a comment

Experimenting with user namespaces

User namespaces are a really neat feature, but there are some subtleties involved which can make them perplexing to first play with. Here I’m going to show a few things you can do with them, with an eye to explaining … Continue reading

Posted in Uncategorized | Tagged , | Leave a comment