From: klavs klavsen (kl_at_vsen.dk)
Date: Fri 08 Feb 2002 - 12:19:47 GMT
On Fri, 2002-02-08 at 12:14, John Lyons wrote:
>
> > I'm looking for a secure environment to run 1 virtual server,
> > on 1 real
> > machine - for the purpose of protecting the machine against
> > dumb users, hacked services and so forth.
>
> Vserver is THE solution not freevsd.
Based on what arguments/features?
> > vserver requires a kernel patch. freevsd doesn't. I'm
> > unfortunately not clever enough to figure out, if that means that freevsd
> is less safe
> > than vserver, or if vserver is just troublesome as it can't use the
> > standard kernel.
>
> OK, if you're not experienced enough to patch the kernel forget FreeVSD. The
> mailing list for freevsd is full of people trying to install, configure and
> use it who are having all sorts of problems.
I have no problem with compiling/patching kernels. Sorry if I somehow
gave that impression. I just want the safest possible setup for my need.
was also thining of asking alter, how LIDS works with the vserver patch.
> My advice to you would be to try the binary kernel first.
> I found that it didn't have the network driver loaded that I wanted and I
> didn't want to load it as a module. In Dec 2001 I'd never built a kernel but
> within an hour of starting I'd patched the kernel, built it, installed
> vserver and was well on my way to getting my first vserver running.
There's a binary kernel for vserver? well i'll just compile my own, if I
decide that vserver is the best for me :-)
> There are several tutorials on this eg
> http://www.linuxgazette.com/issue68/ghosh.html
>
> Stick with vserver it beats freevsd hands down for ease of use.
ease of use, isn't enough, if it doesn't have the necessary features.
freevsd comes with some webpage management utilities. sounds pretty
nice.
-- Regards, Klavs Klavsen-------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant kl_at_vsen.dk - http://www.vsen.dk
Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter