Understanding user namespaces - Michael Kerrisk
User namespaces are at the heart of many interesting technologies that allow isolation and sandboxing of applications, for example running containers without root privileges and sandboxes for web browser plug-ins. In this tutorial, we'll look in detail at user namespaces, building up a basic understanding of what a user namespace is and going on to questions such as: what does being “superuser inside a user namespace” allow you do (and what does it not allow); what is the relationship between user namespaces and other namespace types (PID, UTS, network, etc.); and what are the security implications of user namespaces? We'll also explore some simple shell commands that can be used for creating and experimenting with user namespaces in order to better understand how they work. Along the way, there will hopefully be time for a few live demos.
---
Michael Kerrisk is the author of the acclaimed book, “The Linux Programming Interface” (http://man7.org/tlpi/), a guide and reference for system programming on Linux and UNIX. He contributes to the Linux kernel primarily via documentation, review, and testing of new kernel-user-space interfaces. He has contributed to the Linux man-pages project (http://www.kernel.org/doc/man-pages/) since 2000, and been the project maintainer since 2004. Michael is a trainer and consultant, living in Munich, Germany.
https://foss-north.se/2019/speakers-and-talks.html#mkerrisk
Видео Understanding user namespaces - Michael Kerrisk канала foss-north
---
Michael Kerrisk is the author of the acclaimed book, “The Linux Programming Interface” (http://man7.org/tlpi/), a guide and reference for system programming on Linux and UNIX. He contributes to the Linux kernel primarily via documentation, review, and testing of new kernel-user-space interfaces. He has contributed to the Linux man-pages project (http://www.kernel.org/doc/man-pages/) since 2000, and been the project maintainer since 2004. Michael is a trainer and consultant, living in Munich, Germany.
https://foss-north.se/2019/speakers-and-talks.html#mkerrisk
Видео Understanding user namespaces - Michael Kerrisk канала foss-north
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
![Containers unplugged: Linux namespaces - Michael Kerrisk](https://i.ytimg.com/vi/0kJPa-1FuoI/default.jpg)
![Cgroups, namespaces, and beyond: what are containers made from?](https://i.ytimg.com/vi/sK5i-N34im8/default.jpg)
![The JVM and Docker. A good idea? by Christopher Batey](https://i.ytimg.com/vi/6ePUiQuaUos/default.jpg)
![09 - Patents](https://i.ytimg.com/vi/wtowO-8wpKo/default.jpg)
![See what your computer is doing with Ftrace utilities](https://i.ytimg.com/vi/68osT1soAPM/default.jpg)
![Bryan Cantrill: The Summer of RUST](https://i.ytimg.com/vi/LjFM8vw3pbU/default.jpg)
![Keynote: Linus Torvalds, Creator of Linux & Git, in conversation with Dirk Hohndel, VP](https://i.ytimg.com/vi/rPVeu4bsn3U/default.jpg)
![Containers unplugged: understanding user namespaces - Michael Kerrisk](https://i.ytimg.com/vi/73nB9-HYbAI/default.jpg)
![User Namespaces Part 1, Phil Estes](https://i.ytimg.com/vi/nc5qOeF2dwY/default.jpg)
![strace: Monitoring The Kernel-User-Space Conversation - Michael Kerrisk](https://i.ytimg.com/vi/GZoq3PZTCUM/default.jpg)
![Strace: Monitoring The Kernel-User-Space Conversation - Michael Kerrisk](https://i.ytimg.com/vi/oFt6V56BOlo/default.jpg)
![Introduction to Linux Network Namespaces](https://i.ytimg.com/vi/_WgUwUf1d34/default.jpg)
![dotScale 2013 - Solomon Hykes - Why we built Docker](https://i.ytimg.com/vi/3N3n9FzebAA/default.jpg)
![Containers: cgroups, Linux kernel namespaces, ufs, Docker, and intro to Kubernetes pods](https://i.ytimg.com/vi/el7768BNUPw/default.jpg)
![Steven Rostedt - Learning the Linux Kernel with tracing](https://i.ytimg.com/vi/JRyrhsx-L5Y/default.jpg)
![What Have Namespaces Done for You Lately?](https://i.ytimg.com/vi/MHv6cWjvQjM/default.jpg)
![Linux Kernel Development, Greg Kroah-Hartman - Git Merge 2016](https://i.ytimg.com/vi/vyenmLqJQjs/default.jpg)
![How Docker Works - Intro to Namespaces](https://i.ytimg.com/vi/-YnMr1lj4Z8/default.jpg)
![Lesson 4: Whats under the hood - Namespaces, Cgroups and OverlayFS](https://i.ytimg.com/vi/2ZdJ_3sBr6A/default.jpg)
![The kernel report](https://i.ytimg.com/vi/oaZdarL9ttM/default.jpg)