From mboxrd@z Thu Jan 1 00:00:00 1970 From: Alexander Bokovoy To: devel@linux.iplabs.ru Message-ID: <20011012114031.C17640@pc152.belcaf.minsk.by> Mime-Version: 1.0 Content-Type: text/plain; charset=koi8-r Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.3.22.1i Subject: [devel] Fw: FWD: Announce: many virtual servers on a single box Sender: devel-admin@linux.iplabs.ru Errors-To: devel-admin@linux.iplabs.ru X-BeenThere: devel@linux.iplabs.ru X-Mailman-Version: 2.0 Precedence: bulk Reply-To: devel@linux.iplabs.ru List-Help: List-Post: List-Subscribe: , List-Id: ALT Linux Team Developers mailing list List-Unsubscribe: , List-Archive: X-Original-Date: Fri, 12 Oct 2001 11:40:31 +0300 Date: Fri, 12 Oct 2001 11:40:31 +0300 Archived-At: List-Archive: List-Post: Двойной форвард, но он стоит того. 2Sergey Bolshakov: интересно, можно ли ее использовать с BTE? 2Goldhead: Твои мысли по интеграции с нашим 2.4? ----- Forwarded message from Mike Panetta ----- Date: Thu, 11 Oct 2001 14:10:21 -0700 From: Mike Panetta To: devel@applianceware.com, aw@belcaf.com Subject: FWD: Announce: many virtual servers on a single box I found this pretty intresting, dont know immediately what it may be good for, but it may be usefull in the future. Mike ----- Forwarded message from Jacques Gelinas ----- From: Jacques Gelinas Date: Thu, 11 Oct 2001 01:06:32 -0500 To: Linux kernel list Subject: Announce: many virtual servers on a single box Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org X-UIDL: ]7/!!g03!!_%N"!0;4"! I have enhanced the kernel to allow several independant virtual servers running on the same box (sharing the same kernel as well). I introduced 2 new system calls (new_s_context and set_ipv4root) allowing much independance between the virtual servers. Virtual servers are independant enough and "real" enough that you can supply root password to the virtual server administrators. Virtual servers may be described -May run various network services, binding to the same ports without special configuration. Services are started normally (sysv script, whatever the distro you are using). -Have independant process list, so they can't interfere. You can't see or send signal to process in other vservers (or the root server) -I have also modified the capability system a little, so those virtual server administrators can't take over the machine. I have introduced a per-process capability ceiling, inherited by sub-process. Even setuid program can't grab more capabilities.. -Update packages normally, create users, Use any admin procedure/tool Maybe such a project has already been done. Anyway, I have written a lot of documentation about it (how it works, pro and con and so on). It works on top of 2.4.10 or 2.4.11 (probably anything). I would really like to get some comments. You can find all the documentation and packages at http://www.solucorp.qc.ca/miscprj/s_context.hc All this is GPL... --------------------------------------------------------- Jacques Gelinas vserver: run general purpose virtual servers on one box, full speed! http://www.solucorp.qc.ca/miscprj/s_context.hc - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/ ----- End forwarded message ----- -- ----- End forwarded message ----- -- / Alexander Bokovoy $ cat /proc/identity >~/.signature `Senior software developer and analyst for SaM-Solutions Ltd.` --- I have accepted Provolone into my life! _______________________________________________ Devel mailing list Devel@linux.iplabs.ru http://www.logic.ru/mailman/listinfo/devel