Y
Hacker News
new
|
ask
|
show
|
jobs
by
peregrinari
5493 days ago
Very interested to hear this as well. Anyone from Heroku can comment?
1 comments
mmcgrana
5493 days ago
LXC is one of several isolation layers used in the Heroku dyno manifold to ensure process security and resource guarantees. Here is a more in-depth discussion of Heroku dyno isolation:
http://devcenter.heroku.com/articles/dyno-isolation
.
link
klaruz
5493 days ago
So LXC is fully secure now if you stick to chroot?
http://www.mail-archive.com/lxc-users@lists.sourceforge.net/...
link
shykes
5492 days ago
You can't contain root in lxc. It's great for unprivileged users, though.
link