Y
Hacker News
new
|
ask
|
show
|
jobs
by
ummonk
2394 days ago
Standard containerization technology (e.g. docker) isn’t designed to sandbox untrusted code.
1 comments
inetknght
2394 days ago
Do tell what is designed to sandbox untrusted code
link
jturpin
2394 days ago
AWS Has written Firecracker for this purpose
https://firecracker-microvm.github.io/
link
javajosh
2394 days ago
Xen Hypervisor can do that
https://xenproject.org/developers/teams/xen-hypervisor/
link