|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [Publicity] A thought piece: Docker and Unikernels
I thought about it and it would be ok on our blog. But we are sort of preaching to the converted there, so another channel may be better Lars ________________________________________ From: Tzach Livyatan [tzach@xxxxxxxxxxxxxxxxxxxx] Sent: 20 August 2014 10:06 To: Russell Pavlicek Cc: Anil Madhavapeddy; Libby Clark; Lars Kurth; George Dunlap; publicity@xxxxxxxxxxxxxxxxxxxx Subject: Re: [Publicity] A thought piece: Docker and Unikernels On Wed, Aug 20, 2014 at 5:42 AM, Russell Pavlicek <russell.pavlicek@xxxxxxxxxx<mailto:russell.pavlicek@xxxxxxxxxx>> wrote: Revised version. I've added Libby (whom I saw in the lobby earlier) and the Publicity list. New title. Lars has indicated he wants this divorced from the Xen Project blog, since it has the potential to irritate some people. I'm fine with that; I irritated people on my own for years. ;) I have a feeling someone in the 11:15 AM slot tomorrow will make this piece necessary. Comments? Good post. Just wanted to point a related 3 parts post from the OSv blog http://osv.io/blog/blog/2014/06/19/containers-hypervisors-part-1/ Russ Pavlicek Xen Project Evangelist, Citrix Systems Home Office: +1-301-829-5327<tel:%2B1-301-829-5327> Mobile: +1-240-397-0199<tel:%2B1-240-397-0199> UK VoIP: +44 1223 852 894<tel:%2B44%201223%20852%20894> ________________________________ From: Anil Madhavapeddy [anil@xxxxxxxxxx<mailto:anil@xxxxxxxxxx>] Sent: Tuesday, August 19, 2014 9:55 AM To: Russell Pavlicek Cc: Lars Kurth; George Dunlap; sconway@xxxxxxxxxxxxxxxxxxx<mailto:sconway@xxxxxxxxxxxxxxxxxxx> Subject: Re: A thought piece: Docker and Unikernels I need a cup of tea now... On 19 Aug 2014, at 08:52, Russell Pavlicek <russell.pavlicek@xxxxxxxxxx<mailto:russell.pavlicek@xxxxxxxxxx>> wrote: Splendid thank you! And as to the aggressive tone: welcome to America! ;) Sent from my Android phone using TouchDown (www.nitrodesk.com<http://www.nitrodesk.com/>) -----Original Message----- From: Anil Madhavapeddy [anil@xxxxxxxxxx<mailto:anil@xxxxxxxxxx>] Received: Tuesday, 19 Aug 2014, 8:37AM To: Russell Pavlicek [russell.pavlicek@xxxxxxxxxx<mailto:russell.pavlicek@xxxxxxxxxx>] CC: Lars Kurth [lars.kurth@xxxxxxxxxx<mailto:lars.kurth@xxxxxxxxxx>]; George Dunlap [George.Dunlap@xxxxxxxxxx<mailto:George.Dunlap@xxxxxxxxxx>]; sconway@xxxxxxxxxxxxxxxxxxx<mailto:sconway@xxxxxxxxxxxxxxxxxxx> [sconway@xxxxxxxxxxxxxxxxxxx<mailto:sconway@xxxxxxxxxxxxxxxxxxx>] Subject: Re: A thought piece: Docker and Unikernels It's an aggressively toned article, but not offensively so. I like it... A couple of minor tweaks: > There is no multi-user operating system, no shell scripts, and no massive > library of utilities to take up room – or to employ in some nefarious > exploit. There is just enough code to make the application run, and precious > little for a malefactor to leverage. It's not the “end-all be-all” of > security, but it is certainly facing the right direction. could have a note on type safety added: There is no multi-user operating system, no shell scripts, and no massive library of utilities to take up room – or to employ in some nefarious exploit. There is just enough code to make the application run, and precious little for a malefactor to leverage. All the code that is present is statically type-safe, from the application stack all the way down to the device drivers themselves. It's not the “end-all be-all” of security, but it is certainly facing the right direction. > I fully expect that 5 years from now we will look back at the unikernels of > 2014 and see these as the seedlings of what will be a growing forest of > unikernel-type systems. Frankly, I can't wait to see what will develop in > this space. Could note that unikernels and containers may well converge: > I fully expect that 5 years from now we will look back at the unikernels of > 2014 and see these as the seedlings of what will be a growing forest of > unikernel-type systems. They can be viewed as the natural evolution of Linux > containers - maintaining their packaging and deployment benefits, but adding > much more specialization into the mix to reduce resource wastage and external > attack surface. -a On 19 Aug 2014, at 07:24, Russell Pavlicek <russell.pavlicek@xxxxxxxxxx<mailto:russell.pavlicek@xxxxxxxxxx>> wrote: > Folks, > > I woke up this morning with this going through my head. It was pretty much > written in one shot (which I never do), so it may take some polishing, but I > think the thoughts are all there. > > I see James Bottomley on the Keynote list for Wednesday morning and I > anticipate another round of the "Docker has won" message that James has > become famous for. > > I'd like your feedback. Ideally, I'd like to propose this for > Linux.com<http://Linux.com> in order to temper the flawed notion of Docker as > the panacea of virtualuzation, hopefully before the media swell around his > prognostications dies down. > > What do you think? > > Russ Pavlicek > Xen Project Evangelist, Citrix Systems > Home Office: +1-301-829-5327<tel:%2B1-301-829-5327> > Mobile: +1-240-397-0199<tel:%2B1-240-397-0199> > UK VoIP: +44 1223 852 894<tel:%2B44%201223%20852%20894> > <Docker has not won the war-the battle is just beginning.odt><Docker has not > won the war-the battle is just beginning.pdf> _______________________________________________ Publicity mailing list Publicity@xxxxxxxxxxxxxxxxxxxx<mailto:Publicity@xxxxxxxxxxxxxxxxxxxx> http://lists.xenproject.org/cgi-bin/mailman/listinfo/publicity _______________________________________________ Publicity mailing list Publicity@xxxxxxxxxxxxxxxxxxxx http://lists.xenproject.org/cgi-bin/mailman/listinfo/publicity
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |