Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

What's the catch? Where can I read something about the limitations of Docker? Where will it leaking through that you're running in a shared container?

I can see some things; the containers will be sharing kernel resources (FS/IO buffers, kernel config etc) but is that all?



I don't know the specifics but it uses standard (if new) Linux kernel tech: LXC [1], namespaces [2], cgroups [3] and AUFS [4] to create something similar to a BSD or Solaris jail.

I would research issues with those systems.

1 - http://en.wikipedia.org/wiki/LXC 2 - http://kernelnewbies.org/Linux_3.8#head-fc2604c967c200a26f33... 3 - http://en.wikipedia.org/wiki/Cgroups 4 - http://aufs.sourceforge.net/




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: