Jason White wrote:
Tim Lyth <tcl@tcl.homedns.org> wrote:
Therefore, can anyone confirm for me if I upgrade to 2.6.39 or 3.0.0, will I still be able to use my Linux vservers (I really do NOT want to have to rebuild them all within another virtualisation environment)? Or has Xen become the defacto (and possibly only) virtualisation system that Debian's pre-packaged kernels will support?
There are also Linux containers (lxc), but as I remember, there are limits to what these will virtualize, i.e., they aren't a complete virtualization solution at the moment.
vserver and openvz are out-of-tree, and Ubuntu dropped support for them in 10.04 LTS (running 2.6.32). For that reason, I migrated to LXC, which is blessed by Ubuntu *and* Red Hat *and* it's in the mainline kernel, so you get it out of the box. I wouldn't recommend LXC on 2.6.32; you have to jump through hoops to lock it down, and even now root can probably break out of my containers in a few ways. It's also immature around the edges -- for example "free" reports the system-wide resource limit and consumption, not the container's. Oh, and Ubuntu issued a "security" update for the kernel to fix a DOS in vsftpd, by turning off namespaces (i.e. broke LXC). So if you want LXC on 10.04 you can either run 2.6.32-32 and get no kernel security updates, a backported 2.6.38 that breaks all the time, or maintain your own kernel packages. Grr, Trent SMASH!