From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 86F97138CA4 for ; Fri, 24 Apr 2015 20:24:38 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 7021DE084E; Fri, 24 Apr 2015 20:24:16 +0000 (UTC) Received: from jarl.yagibdah.de (unknown [185.55.75.245]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id F2E67E0827 for ; Fri, 24 Apr 2015 20:24:14 +0000 (UTC) Received: from br-dmz-ip.yagibdah.de ([192.168.1.1] helo=heimdali.yagibdah.de) by jarl.yagibdah.de with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.84) (envelope-from ) id 1Ylk8y-0000mN-M2 for gentoo-user@lists.gentoo.org; Fri, 24 Apr 2015 22:24:12 +0200 Received: from lee by heimdali.yagibdah.de with local (Exim 4.84) (envelope-from ) id 1Ylk8y-0004OH-K4 for gentoo-user@lists.gentoo.org; Fri, 24 Apr 2015 22:24:12 +0200 From: lee To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] xen on new install reboots by itself In-Reply-To: <3498478.tZ8U0JdMle@andromeda> (J. Roeleveld's message of "Fri, 24 Apr 2015 13:37:03 +0200") Date: Fri, 24 Apr 2015 22:23:01 +0200 Organization: my virtual residence Message-ID: <87iocl9syi.fsf@heimdali.yagibdah.de> References: <87r3rablqe.fsf@heimdali.yagibdah.de> <3498478.tZ8U0JdMle@andromeda> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.4 (gnu/linux) Mail-Followup-To: gentoo-user@lists.gentoo.org Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain X-Archives-Salt: 1d916447-a66f-413e-bda1-3c3eb54d19c4 X-Archives-Hash: 3a9f606f9cc1f58032b22f61785d4f63 "J. Roeleveld" writes: > On Thursday, April 23, 2015 11:03:53 PM lee wrote: >> "J. Roeleveld" writes: >> >> >> > I disagree. Been using Xen for over 10 years now and find it very easy to >> > use. The documentation could be better on the Xen site itself, but there >> > is plenty of decent documentation available via Google. >> Then we just disagree about this. > > Do you have anything that you find insufficiently documented or is too difficult? sure, lots >> >>Virtualization with containers is basically as simple as running just >> >>another daemon. >> >> >> > Not quite. I use virtualization to minimizer the physical hardware. Xen is >> > easy for that. Containers are what chroot jails should have been. But >> > there is no simple method to set these up when security isolation is your >> > goal. >> Containers or chroots? > > Containers. > Chroots don't have much when it comes to isolation. What exactly are the issues with containers? Ppl seem to work on them and to manage to make them more secure over time. >> >>Which the "better" tool, or combination of tools is, depends on what >> >>you >> >>want to accomplish. You could use containers in a VM, too, or use >> >>virtualbox along with containers to run the odd VMs that require full >> >>virtualzation. >> >> >> > Virtualbox is nice for a quick test. I wouldn't use it for production. >> >> Why not? > > Several reasons: > > 1) I wouldn't trust a desktop application for a server So that's a gut feeling? > 2) The overhead from Virtualbox is quite high (still better then VMWare's > desktop versions though) Overhead in which way? I haven't done much with virtualbox yet and merely found it rather easy to use, very useful and to just work fine. Compared to containers, the overhead xen requires is enormous, and it doesn't give you a stable system to run VMs on because dom0 is already virtualized itself. I don't know how that compares to virtualbox --- I didn't have time to look into it and it just worked, allowing me to run a VM on the fly on the same machine I'm working on without any ado. That VM was simply a copy of a VM taken from a vmware server, and the copy could be used without any conversion or anything. You can't do that with xen because you'll be having lots of trouble to convert the VM, to convert the machine you're working on to xen and to get it to work, to work around all the problems xen brings about ... Some days later you might finally have it working --- which is out of the question because the VM is needed right away. And virtualbox does just that. I was really surprised that virtualbox worked that well. Maybe xen will get there some time. -- Again we must be afraid of speaking of daemons for fear that daemons might swallow us. Finally, this fear has become reasonable.