[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Publicity] A thought piece: Docker and Unikernels






On Wed, Aug 20, 2014 at 5:42 AM, Russell Pavlicek <russell.pavlicek@xxxxxxxxxx> wrote:
Revised version. I've added Libby (whom I saw in the lobby earlier) and the Publicity list. New title.

Lars has indicated he wants this divorced from the Xen Project blog, since it has the potential to irritate some people. I'm fine with that; I irritated people on my own for years. ;)

I have a feeling someone in the 11:15 AM slot tomorrow will make this piece necessary.

Comments?
Good post.Â
Just wanted to point a related 3 parts post from the OSv blog
Â

Russ Pavlicek
Xen Project Evangelist, Citrix Systems
Home Office: +1-301-829-5327
Mobile: +1-240-397-0199
UK VoIP: +44 1223 852 894

From: Anil Madhavapeddy [anil@xxxxxxxxxx]
Sent: Tuesday, August 19, 2014 9:55 AM
To: Russell Pavlicek
Cc: Lars Kurth; George Dunlap; sconway@xxxxxxxxxxxxxxxxxxx
Subject: Re: A thought piece: Docker and Unikernels

I need a cup of tea now...

On 19 Aug 2014, at 08:52, Russell Pavlicek <russell.pavlicek@xxxxxxxxxx> wrote:

Splendid thank you!

And as to the aggressive tone: welcome to America! ;)

Sent from my Android phone using TouchDown (www.nitrodesk.com)

-----Original Message-----Â
From:ÂAnil Madhavapeddy [anil@xxxxxxxxxx]
Received:ÂTuesday, 19 Aug 2014, 8:37AM
To:ÂRussell Pavlicek [russell.pavlicek@xxxxxxxxxx]
CC:ÂLars Kurth [lars.kurth@xxxxxxxxxx]; George Dunlap [George.Dunlap@xxxxxxxxxx]; sconway@xxxxxxxxxxxxxxxxxxx [sconway@xxxxxxxxxxxxxxxxxxx]
Subject:ÂRe: A thought piece: Docker and Unikernels

It's an aggressively toned article, but not offensively so. I like it...

A couple of minor tweaks:

> There is no multi-user operating system, no shell scripts, and no massive library of utilities to take up room â or to employ in some nefarious exploit. There is just enough code to make the application run, and precious little for a malefactor to leverage. It's not the âend-all be-allâ of security, but it is certainly facing the right direction.Â

could have a note on type safety added:

There is no multi-user operating system, no shell scripts, and no massive library of utilities to take up room â or to employ in some nefarious exploit. There is just enough code to make the application run, and precious little for a malefactor to leverage. All the code that is present is statically type-safe, from the application stack all the way down to the device drivers themselves. It's not the âend-all be-allâ of security, but it is certainly facing the right direction.

> I fully expect that 5 years from now we will look back at the unikernels of 2014 and see these as the seedlings of what will be a growing forest of unikernel-type systems. Frankly, I can't wait to see what will develop in this space.

Could note that unikernels and containers may well converge:

> I fully expect that 5 years from now we will look back at the unikernels of 2014 and see these as the seedlings of what will be a growing forest of unikernel-type systems. They can be viewed as the natural evolution of Linux containers - maintaining their packaging and deployment benefits, but adding much more specialization into the mix to reduce resource wastage and external attack surface.

-a

On 19 Aug 2014, at 07:24, Russell Pavlicek <russell.pavlicek@xxxxxxxxxx> wrote:

> Folks,

> I woke up this morning with this going through my head. It was pretty much written in one shot (which I never do), so it may take some polishing, but I think the thoughts are all there.

> I see James Bottomley on the Keynote list for Wednesday morning and I anticipate another round of the "Docker has won" message that James has become famous for.ÂÂ

> I'd like your feedback. Ideally, I'd like to propose this for Linux.com in order to temper the flawed notion of Docker as the panacea of virtualuzation, hopefully before the media swell around his prognostications dies down.

> What do you think?

> Russ Pavlicek
> Xen Project Evangelist, Citrix Systems
> Home Office: +1-301-829-5327
> Mobile: +1-240-397-0199
> UK VoIP: +44 1223 852 894
> <Docker has not won the war-the battle is just beginning.odt><Docker has not won the war-the battle is just beginning.pdf>


_______________________________________________
Publicity mailing list
Publicity@xxxxxxxxxxxxxxxxxxxx
http://lists.xenproject.org/cgi-bin/mailman/listinfo/publicity


_______________________________________________
Publicity mailing list
Publicity@xxxxxxxxxxxxxxxxxxxx
http://lists.xenproject.org/cgi-bin/mailman/listinfo/publicity

 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.