Containers unplugged: Linux namespaces - Michael Kerrisk
Рет қаралды 19,643
4 жыл бұрынLinux namespaces are a resource isolation technique. Each namespace type wraps some global system resource in an abstraction that makes it appear to the processes within the namespace that they have their own isolated instance of that resource, when in fact there are multiple instances of the resource, with each instance private to a particular group of process. Namespaces are key building blocks for a number of interesting technologies--most notably containers, but also a range of other interesting applications such as Flatpak and Firejail.
In this presentation we'll look at various Linux namespace types--including UTS, mount, network, and PID namespaces--in order to understand what resources they govern and what use cases they serve. Along the way, we should have time for a live demo or two, so as to make the "theory" more concrete.
Save the date for NDC TechTown 2020 (31st of August - 3rd of September)
Check out more of our talks at:
ndctechtown.com/
www.ndcconferences.com/
@EvanCarrollTheGreat 3 жыл бұрын
One of the very best talks on namespaces and Linux. Thanks a ton!
@king0s Жыл бұрын
. I need to consume this in multiple pieces. I love the depth. ❤ and 🙏 gratitude from Chennai.
@hassanhashemi6478 4 жыл бұрын
Great talk, Really enjoyed watching. Thanks Michael..
@lexdarocy 4 жыл бұрын
Thank you so much for this, I use what you taught me in this lecture everyday
@janp.monsch3383 3 жыл бұрын
Great introduction to namespace.
@aravindhankrishnan1300 4 жыл бұрын
Excellent, concise and precise. Thanks!
@sahilgupta3564 2 жыл бұрын
Really enjoyed this tutorial. :)
@puneetmathur 4 жыл бұрын
Wow! Very enlightening. Thank you!
@nacholupotti3644 2 жыл бұрын
Masterclass! Excelent explanation, i am right now going to part 2. Thanks!
@mujeexminiminer7653 2 жыл бұрын
This talk just made me realize the gap in my linux knowledge, because I didn’t understand sh*t😅 Nevertheless, it was a great talk!!! Will surely revisit some time later
@hiccupmaster3572 3 жыл бұрын
For those who want to see the next session kzfaq.info/get/bejne/bZmedZxerb_GcX0.html
@90hijacked 2 ай бұрын
Thank you !!!
@attilakun7850 4 жыл бұрын
Excellent talk. Regarding the question at the very end: I think network namespaces provide isolation for Unix domain sockets too. If so, how can there be a Unix domain socket connection between two different network namespaces?
@MichaelKerrisk 3 жыл бұрын
Network namespaces provide isolation of so-called abstract UNIX domain sockets. But normal UNIX domain sockets are not isolated by network namespaces, and thus it's possible to establish a UNIX domain socket connection between network namespaces.
@Trippykiyay Жыл бұрын
Any idea where to get the slide deck for this presentation?
@manishnaik2052 Жыл бұрын
Why did they write docker in go? All the C namespace apis are clear and concise already.
@nasirmahmood7799 3 жыл бұрын
where is the 2nd part . thanks.
@DennisBuduev 3 жыл бұрын
I guess it is here kzfaq.info/get/bejne/bZmedZxerb_GcX0.html
@stackunderflow5951 2 жыл бұрын
It might be better to demo not only the PID and UTS namespaces like mount namespace
@cryp0g00n4 3 жыл бұрын
What does the $$ do? @19:00
@orustammanapov 3 жыл бұрын
if I'm not mistaken it holds PID of the current process (in this case it should be shell PID it's being executed in)
@nasirmahmood7799 3 жыл бұрын
@@orustammanapov -- your shell's PROCESS ID -- echo $$ will show you what is actually is
NDC Conferences
Рет қаралды 8 М.
DATA MINER
Рет қаралды 11 М.
Jason Derulo
Рет қаралды 23 МЛН
NDC Conferences
Рет қаралды 11 М.
Google TechTalks
Рет қаралды 20 М.
Blueberry Lutein
Рет қаралды 124 М.
Мозголом
Рет қаралды 121 М.