[Lxc-users] Possibly of interest - Chrome OS plans

Walter Stanish walter.stanish at saffrondigital.com
Sun Oct 31 09:41:44 UTC 2010


Assuming this is not already known to everyone, though it was
apparently published in late 2009...

Apparently Chrome OS plans to use containers to increase system security.

See http://www.chromium.org/chromium-os/chromiumos-design-docs/system-hardening
(In particular, 'minijail' and 'libminijail'.)

Update from August 20 this year: "we have minijail implemented, just
not feature-complete".
http://code.google.com/p/chromium-os/issues/detail?id=380

Code is available to browse here:
  http://git.chromium.org/gitweb/?p=minijail.git;a=tree

The code itself states:
  "XXX This is a very early implementation of the jailing logic.
  XXX Many features are missing or will be made more tunable."

Hope the above is of interest to some!

- Walter




More information about the lxc-users mailing list