zlacker

[parent] [thread] 2 comments
1. Syonyk+(OP)[view] [source] 2023-07-11 19:25:53
Containers rely on the kernel to enforce separation. They're great for keeping trusted workloads from interfering with each other, but I don't trust them for potentially hostile workload separation.

If you can compromise the kernel (and kernel exploits aren't particularly expensive nor uncommon), then a container is like a door locked by a sign that says "Please do not open without permission." If you don't care to go through it, you won't. And if you want to get through it, it doesn't stop you. Once you're in the kernel, containers don't offer any meaningful separation.

Qubes uses hardware virtualization with a fairly stripped down Xen to provide the isolation, and that's a somewhat harder lock to crack open if you want to transit between silos.

replies(1): >>Dah00n+Oc
2. Dah00n+Oc[view] [source] 2023-07-11 20:32:34
>>Syonyk+(OP)
Does this also count for Proxmox?
replies(1): >>hiatus+sk
◧◩
3. hiatus+sk[view] [source] [discussion] 2023-07-11 21:17:02
>>Dah00n+Oc
Proxmox containers are just regular containers.

https://pve.proxmox.com/wiki/Linux_Container

[go to top]