Openvz 8? [message #53683] |
Tue, 25 August 2020 16:23 |
jjs - mainphrame
Messages: 44 Registered: January 2012
|
Member |
|
|
Greetings, I've been using openvz (and virtuozzo) since version 5. It's still my go to solution, and believe me, I've tried them all.
I'm beginning to wonder if OVZ-7 is the end of the road. Is there some plan for OVZ-8? I've heard no official word or even unofficial chatter about OVZ-8 lately, and I'm starting to cast about to make sure there are alternatives, in case this is a dead end.
Can you confirm or deny that there will be a Centos-8 based release of OVZ?
A clear word would do much to give us some much needed peace of mind.
|
|
|
|
|
|
Re: Openvz 8? [message #53728 is a reply to message #53723] |
Tue, 15 December 2020 17:03 |
dmc_dtc
Messages: 15 Registered: May 2014 Location: Serbia
|
Junior Member |
|
|
Thank you Khorenko on your detailed reply, glad to hear we wont have problem at least with OpenVZ, although with OpenVZ8 we will definitely be switching to full OpenVZ8 that is virtuozzo linux iso, since we've been relying on CentOS7 for current version which is not ideal, but with help of KVM our provider now gives us ability to install custom ISO, but hopefully with OpenVZ8 will be shipped some script similar to OpenVZ7 which converts then popular RHEL like distro to full OpenVZ8 which would simplify instalation without using KVM. I am willing to test it localy and on servers if needed
That said, considering how virtuoozzo have already its own RHEL-like linux, you could use this to your advantage and make one Virtuozzo-VZ server like version and one 100% binary RHEL8 compatibile version for client containers and since the brand and parent company is well established it could be interesting opportunity.
Kind regrads,
Vladimir Mitic
>> dmc / dtc <<
[Updated on: Tue, 15 December 2020 17:05] Report message to a moderator
|
|
|
|
Re: Openvz 8? [message #53737 is a reply to message #53734] |
Mon, 15 March 2021 17:00 |
khorenko
Messages: 533 Registered: January 2006 Location: Moscow, Russia
|
Senior Member |
|
|
Hi,
well, i did not have a chance to work under selinux code and not sure
1) for selinux management inside a VZ Container:
Is there is a functionality at the moment to configure selinux per-namespace from inside this namespace.
i have not seen such a functionality in mainstream kernel. If i miss something, please point me out.
2) for selinux configuration for VZ Containers done on host:
Well, this seems to be possible, why not,
the main difficulty here should be to audit all VZ userspace and generate a selinux configuration for each of them
which will be strict enough but won't break anything.
But you've meant the point 1), right?
And while there is no such a functionality available, it will be a big feature.
If your problem is solved - please, report it!
It's even more important than reporting the problem itself...
|
|
|
Re: Openvz 8? [message #53739 is a reply to message #53737] |
Wed, 17 March 2021 16:15 |
jjs - mainphrame
Messages: 44 Registered: January 2012
|
Member |
|
|
Hello, and thanks for your insights.
Well, (1) and/or (2) would be great to have available, but even (0) (selinux for host itself) would be an easy first step.
I've seen where redhat provides selinux policies to contain the little chrooted app (docker) environments, which started me thinking about how that could be extended to full system containers.
Just a thought...
|
|
|