The isolation I am referencing is from the VM, not the container. Containers don... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

kevincox 55 days ago | parent | context | favorite | on: My VM is lighter (and safer) than your container (...

The isolation I am referencing is from the VM, not the container. Containers don't provide strong isolation, that is why the VM is required in this model.

nailer 55 days ago [–]

The VM is an isolated environment itself. You do not need to be isolated from it.

Using two levels of userland isolation makes about the same sense as using 457 levels of userland isolation.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact