Jails for NetBSD – Kernel Enforced Isolation and Native Resource Control

2 comments

• ggm 3 hours ago
  I'll make the same comment I did on the other post about this. Either document how it differs from FreeBSD jails or give it some other name. Anything else is asking for confusion.
  [-]
  • __patchbit__ 1 hour ago
    That some other name: 'cells' (or 'tiles'), in the compositional sense of leaf and tree, forest, framework is more inviting for creative work than 'jails'.
  • dizhn 1 hour ago
    It's not a port of FreeBSD jails ?
  • LargoLasskhyfv 3 hours ago
    Does the third entry of the FAQ not suffice?
    [-]
    • ggm 57 minutes ago
      No. A feature table would help. An abstraction/layer diagram. A lot more.

      Could bastille port to it as-is? How about podman?

      [-]
      • LargoLasskhyfv 30 minutes ago
        > Could bastille port to it as-is? How about podman?

        He wrote things like these are out of scope.

        Just light and robust jails without further external dependencies.

        [-]
        • PunchyHamster 17 minutes ago
          so it's useless then as you can't run anything you'd want to there
• DeathArrow 55 minutes ago
  It would have been more interesting have they released something compatible with Open Container Initiative. Most people use Docker containers and having Docker compatible containers would have helped with improved adoption of BSDs.
  [-]
  • PunchyHamster 16 minutes ago
    OCI is kinda layer above whatever solution is used for separation