Strategic Thinking (was: Re: Speculative: Rust for base system components)
Wojciech Puchar
wojtek at puchar.net
Sat Jan 5 15:15:26 UTC 2019
> I agree. I find that FreeBSD's jail system is the best virtualization available now and don't see the reason to start poking around
> with Docker and similar.
Agree. You don't have directories named with random hex numbers. you
simply know what is where.
While i've used jails a lot i recently use it rarely. Because i
found that usually they are not needed. Standard unix protection
mechanisms (processes, users, groups) are just fine. For example apache
runs just fine as user.
I completely don't understand why the fashionable microservices (which are
not bad idea as they should have dependencies) needs jail-like
environments, instead of simply running a process in a separate user account.
What is wrong in ALL systems today are shared libraries or languages
(like python or perl) that depends on millions of files. Getting rid of
them will make "microservice" idea the right way.
Simply having static executable to be run. Or multiple static executables
communicating by pipes.
So "microservices" means rediscovering 1980-style (and earlier) way of
writing programs. Rediscovering but with of course messy way.
More information about the freebsd-hackers
mailing list