[Lxc-users] Possibly of interest - Chrome OS plans
Walter Stanish
walter.stanish at saffrondigital.com
Sun Oct 31 09:41:44 UTC 2010
Assuming this is not already known to everyone, though it was
apparently published in late 2009...
Apparently Chrome OS plans to use containers to increase system security.
See http://www.chromium.org/chromium-os/chromiumos-design-docs/system-hardening
(In particular, 'minijail' and 'libminijail'.)
Update from August 20 this year: "we have minijail implemented, just
not feature-complete".
http://code.google.com/p/chromium-os/issues/detail?id=380
Code is available to browse here:
http://git.chromium.org/gitweb/?p=minijail.git;a=tree
The code itself states:
"XXX This is a very early implementation of the jailing logic.
XXX Many features are missing or will be made more tunable."
Hope the above is of interest to some!
- Walter
More information about the lxc-users
mailing list