Red Hat Hires CentOS Developers 91
rjmarvin writes "Karanbir Singh and a handful of other CentOS developers are now full-time Red Hat employees, working in-house on the CentOS distribution with more transparent processes and methods. None of the CentOS developers will be working on Red Hat Enterprise Linux. The CentOS project would become another distribution and community cared for by Red Hat, like Fedora, and Red Hat CTO Brian Stevens says the company is planning its future around OpenStack, not just Linux."
Solaris zones (Score:3, Informative)
Full disclosure... I've been a Solaris Admin, off and on for years who has only been briefly involved with using zones
Your comments show this.
The zones idea is roughly equivalent to chroot (or schroot in some use cases) on Linux. So if you like zones, you can do almost the same thing on a Linux box.
No, it's not. Chroot is a (mostly) completely useless mechanism for security and isolation.
With zones, you can set up the zone with a completely different IP, with different firewall rules and even routing tables, and give some access to the root account on that zone, and not have to worry about them breaking out of the zone or affecting the hosting system (because you can put memory and CPU restrictions on the zone so it doesn't eat up system-wide resources). You can have dozens of zones on one hosting machine and the overhead of this "virtualization" is (IIRC) less than 3%.
FreeBSD's jails is the closest equivalant (having inspired zones). With jails you can also give out the root account and not worry, and even have set-UID binaries.
Put a set-UID binary in a chroot space (or even a Linux container) and all security is gone.
Zones/jails are nothing like chroot: the former can actually be used securely (where do you think the first VPS system came from? FreeBSD jails), while the latter is a nice speed bump before being broken out of.