Hacker News new | comments | show | ask | jobs | submit login

The Linux kernel has within it a lot of namespace facilities mostly meant to support os-level virtualization. Because of how these are constructed, however, you can construct a system that is only partially virtualized. For instance, you can run your binary that has an isolated file system and process space, but does not use a virtualized network interface (or vice versa).

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact