> They feel naked without docker. 'But mah complexity!' they yell when they see plain old binary nowadays. Grr.
That's because they kind of are naked -- containers bring namespace and cgroup based isolation.
If they weren't doing that, then they'd be juggling systemd slices...
If they weren't doing that they'd be setting up per-app users and fussing with ulimit...
And if they weren't doing that, they really would be naked.
I'm very much (as you might be able to tell) pro-containers -- they're a great tool, and they actually do kind of deserve to go most places.
Containers shouldn’t be absolutely everywhere, but they should be the default these days as a layer between the OS and a possibly clueless app developer.
Im pro cgroup isolation but I hate docker. For the first 5 years I used it it definitely caused me more problems than it solved and its design is still bad.
It's fortunate podman exists now coz I was starting to sound like a crackpot.
> They feel naked without docker. 'But mah complexity!' they yell when they see plain old binary nowadays. Grr.
That's because they kind of are naked -- containers bring namespace and cgroup based isolation.
If they weren't doing that, then they'd be juggling systemd slices...
If they weren't doing that they'd be setting up per-app users and fussing with ulimit...
And if they weren't doing that, they really would be naked.
I'm very much (as you might be able to tell) pro-containers -- they're a great tool, and they actually do kind of deserve to go most places.
Containers shouldn’t be absolutely everywhere, but they should be the default these days as a layer between the OS and a possibly clueless app developer.