From: Gil Vidals (gilvidals_at_yahoo.com)
Date: Tue 08 Jan 2002 - 06:28:40 GMT
Hi,
I think James' idea of using vunify to combine the common files
through hardlinks is excellent. In the end, this will probably
be the route I take.
However, I have a completely different approach for hosting 250
VServers, and I would appreciate comments and thoughts on this
before I move forward.
Instead of creating a unique VServer per user, what if I had one
large VServer that hosted 250 users. The large VServer will
protect the base system from any malicious users or run away
processes. The drawback is that the various users could wreak
havoc on each other.
In this scenario how do I control /bin/bash? I guess I don't
understand when the /usr/sbin/chcontext /bin/sh command will
execute. Users will telnet or ssh in and I don't understand at
which point the chcontext command is called or exactly who calls
it??? Someone please help me understand.
Gil_at_Vidals.net
James Gibson offers a good suggestion to use vunify.
--- James Gibson <twistedhammer_at_subdimension.com> wrote:
> go take a hard look at vunify. and go read the design docs for
> it
> (the FAQ, etc..) if you have a vserver with 270 megs of
> 'stuff'
> roughly 90%* of that will be binaries, man-pages and stuff
> like
> that.. stuff that doesn't need to be changed or unique or
> writable..
> with vunify you only have to have ONE copy of that stuff for
> the
> whole 250 vservers, you simply make them immutable and make
> hardlinks for each vserver.. this works because the vservers
> will
> have the CAP_IMMUTABLE (or whatever it is..) capability
> removed.. This now leaves you with a unique set of 27 megs of
> stuff
> that needs to exists for each vserver.. which comes out a
> little over
> 7 gigs for the whole enchilada of 250 vservers (ignoring for
> arguments sake the host environment..).
>
> James Gibson
>
> * a good guess... I could be off.. =)
>
> > Hi,
> >
> > That doesn't make sense to me at all. If my goal is to host
> 250
> > VServers, then I'm in big trouble if the smallest install is
>
> > 270MB. That would be 50GB and that doesn't include the user
> > files!
> >
> > I was thinking that a basic install could be 20 MB. Is that
> > possible? I'll start building basic installs and see how
> small I
> > can get it, but there must be somebody out there who already
> has
> > this down pat and knows what is the smallest practical size
> > install for Vservers with typical functionality (based on
> RH
> > 7.2).
> >
> > Gil_at_Vidals.net
> >
> > >
> > > I've got a default vserver install down to 270mb in size
> > > that's lost some of
> > > the extra languages for compiling software but still
> includes
> > > things like
> > > perl and gcc. I suspect that you need to look at vbuild
> and
> > > vunify for
> > > linking gcc, perl etc to the packages on the host server.
> From
> > > memory
> > > someones saved about 70mb doing these two packages alone.
> > >
> > > I'm also interested in getting a slimmed down vserver so
> if
> > > anyone can beat
> > > 270mb and still keep sufficient functionality let me know
> :-)
> > >
> > > I'll send you are vs.conf file if you email direct. It's
> not
> > > that complex.
> > >
> > > Regards
> > >
> > > John Lyons
> > > DomainCity
> > > http://www.domaincity.co.uk
> > > support_at_domaincity.co.uk
> > > ICQ 74187012
> > >
> > >
> >
>
**********************************************************************
> > * > Please quote your account number in the subject line of
> all >
> > emails. > Failure to do so may result in your enquiries
> taking longer
> > to > process. >
> >
>
**********************************************************************
> > * > > >
> >
> >
> > __________________________________________________
> > Do You Yahoo!?
> > Send FREE video emails in Yahoo! Mail!
> > http://promo.yahoo.com/videomail/
>
>
>
> James Gibson
> twistedhammer_at_subdimension.com
>
>
>
__________________________________________________
Do You Yahoo!?
Send FREE video emails in Yahoo! Mail!
http://promo.yahoo.com/videomail/