Y
Hacker News
new
|
ask
|
show
|
jobs
by
spacenick88
2598 days ago
Well at the very least running in a container gives you filesystem and network and PID space isolation, optionally also user namespace isolation.