Recent Features
| |||||||||||||
Berrangé: Building application sandboxes with libvirt, LXC & KVMBerrangé: Building application sandboxes with libvirt, LXC & KVMPosted Jan 18, 2012 22:15 UTC (Wed) by yokem_55 (subscriber, #10498)In reply to: Berrangé: Building application sandboxes with libvirt, LXC & KVM by gevaerts Parent article: Berrangé: Building application sandboxes with libvirt, LXC & KVM
To be clear, what I put in my previous post is without any sandboxing. So, the KVM sandbox has at least a pretty serious amount of setup-breakdown overhead. How it would affect execution performance outside of that is unknown, but say a process per tab web browser sandboxed in this manner would introduce a fair bit of a delay in opening a new tab if processes aren't sharing a sandbox...
(Log in to post comments)
Berrangé: Building application sandboxes with libvirt, LXC & KVM Posted Jan 18, 2012 22:56 UTC (Wed) by gevaerts (subscriber, #21521) [Link]
I promise I'll read first next time
Berrangé: Building application sandboxes with libvirt, LXC & KVM Posted Jan 19, 2012 0:39 UTC (Thu) by robert_s (subscriber, #42402) [Link]
There's sandboxing and there's sandboxing.
I don't think anyone ever intended for it to be used for that kind of sandboxing.
|
|||||||||||||