[ L T Net ] OPEN-EVENTS :: OPEN MUSIC :: MINICONTENT :: KNOPPIX LINUXTAG.org 
Cornerstone
// LinuxTag 2005
Besuchen Sie uns auch nächstes Jahr wieder auf dem LinuxTag 2005 im Karlsruher Messe- und Kongresszentrum. Für nähere Details und den genauen Termin besuchen Sie bitte die LinuxTag Homepage.
EUROPAS GRÖSSTE GNU/LINUX MESSE UND KONFERENZ
KONFERENZ-DVD 2004
 Hauptseite   Vorträge   Bücher   History   Software   Knoppix   Sponsoren   Abspann   Impressum 
Hauptseite // Vorträge // Concepts of Linux VServer

Concepts of Linux VServer

Herbert Pötzl

Zusammenfassung

A soft partitioning concept based on 'Security Contexts' which allows to create many independent Virtual Private Servers (VPS), similar to normal Linux Servers, which can be run simultaneously on one box at full speed, sharing the hardware resources. All services, such as ssh, mail, Web and databases, can be started on such a VPS, without (or in special cases with only minimal) modification, just like on any real server. Each virtual server has its own user account database and root password and doesn't interfere with other virtual servers, except for the fact that they share the same hardware resources. Linux Capability System, what is it, how can it be used to improve system security, with some examples. Linux File System Attributes and Isolation Concepts. - chroot() namespace restrictions - chcontext() process space restrictions - chbind() network restrictions Kernel space implementation, including a short overview how the Linux Kernel works regarding processes, namespace and network. Impact on performance and possible changes in behaviour, especially regarding the network and the scheduler. Basic examples how to use the Core Tools to create VServer Security Contexts and Network Contexts. Further aspects of the virtualization like: - uts_name() machine/node/domain-name - uptime VPS system uptime - reboot VPS system reboot - ipc/tgid namespace separation Resource Limits - process limits - scheduler limits - memory limits - per context disk limits - per context user/group quota

Über Herbert Pötzl

Born in 1970, explored the world of integrated circuits at the age of 10, implemented his first 'computer' game on a self built micro computer in 1981 (The Game of Nim) Later switched to consumer electronics, C64, C128 and finally Amiga, developed numerous useless applications mainly in assembler language, until confronted with the colorless non intuitive PC, as a natural result, lost for some time in DOS and 8086/88 assembler, trying to write a useful operating system with a gui. This effords where dropped intantly in 1991 as his computer science studies got him access to a NeXT system which at this time was more advanced than everything else available. Prepared a course for students and taught some years object oriented Software Engineering at the Technical University of Vienna. Got first contact with Linux at the University and later, as OpenStep was discontinued slowly moved to the beautiful world of Linux and free software. While working for several smaller and some larger companies in Austria, studied the unix working environment, kernel concepts and later internals. Since November 2003 Project Leader of Linux-VServer, after more than a year of vserver development.

Vortragsunterlagen
 
Impressum // © 2004 LinuxTag e.V.