undefined | Better HN

0 pointswolttam1d ago0 comments

I just don't trust the Linux kernel to effectively isolate processes anymore. Don't care if you're using user namespaces, seccomp, etc. There will be a bug.

Time for Micro VMs, they're a stronger security boundary (not perfect, stronger)

0 comments

Apes1d ago

You can't really do anything useful with a VM either unless you start punching holes in those boundaries.

wolttamOP1d ago

I didn't say run in an air-gapped VM... Just as a means to better isolate the workloads I have running (some less trusted than others). Network connectivity and the associated vulnerabilities obviously remain.

Apes1d ago

No argument against VMs - just that they have a different risk profile and a different set of trade-offs than containers. They're not a silver bullet, but if they're working for you, then go for it.

esseph1d ago

Exactly.

If your VM can't do anything, it's probably not very useful.

Doing things meaning reading / writing files, communicating between VMs, services, etc.

m4631d ago

what about selinux?

j / k navigate · click thread line to collapse

0 comments

Apes1d ago

You can't really do anything useful with a VM either unless you start punching holes in those boundaries.

wolttamOP1d ago

Apes1d ago

No argument against VMs - just that they have a different risk profile and a different set of trade-offs than containers. They're not a silver bullet, but if they're working for you, then go for it.

esseph1d ago

Exactly.

If your VM can't do anything, it's probably not very useful.

Doing things meaning reading / writing files, communicating between VMs, services, etc.

m4631d ago

what about selinux?

j / k navigate · click thread line to collapse