Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

That sounds like a definitive improvement over LXC specially the isolation properties but I'm not sure what is the added value of Docker compared to OpenVZ ?

Any ideas ?



My guess is that the container specification is orthogonal to the sandboxing feature. In fact they're using LXC.


Correct, Docker is currently based on lxc, but that is an implementation detail. In theory it could be ported to any process-level isolation tech with similar features: OpenVZ, Solaris Zones - you could also try using BSD jails although I don't know if they have all the required features.

To answer the original question: Docker extends LXC with a higher-level API which operates at the process level. OpenVZ helps you create "mini-servers". Docker lets you forget about servers and manage processes.


Nice. Can't way to try it out. I've built a similar tool in Go for PandaStream to isolate or encoding processes.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: