Matches for docker, 152 total results Sorted by newest | relevance
Fri Dec 05 18:19:24 UTC 2014 <mats_cd03> doing different things like studying the windows kernel, trying to learn malware analysis fundamentals and some of the tooling, docker deployment for dev and prod for a friend's website, and working on the courts circus project
Tue Dec 02 06:18:05 UTC 2014 <ben_vulpes> deploy pattern is "get code, load deps file into docker,rebuild image with that, if build fails bail, run image, smoke test new container, if new container fails bail, then shut down old container and shoop new container into its place"
Tue Dec 02 06:16:28 UTC 2014 <ben_vulpes> build pattern is: "install docker. then, deploy apptuation."
Tue Dec 02 06:15:08 UTC 2014 <ben_vulpes> docker will keep containers up on its own just fine.
Wed Oct 22 04:59:24 UTC 2014 <ben_vulpes> this is where docker starts coming in handy: instead of burning many hours on chasing down platform and architecture details to get the thing to work on os x, i'm leaning towards just running 0.5.3 in a VM.
Mon Oct 20 02:30:19 UTC 2014 <*> decimation doesn't use docker, probably never will
Mon Oct 20 02:29:19 UTC 2014 <decimation> re: docker << my understanding is that it's pretty much a chroot jail combined with some cpu and ram and network limits
Mon Oct 20 02:07:51 UTC 2014 <diametric> what makes it docker is the whole management infrastructure around it
Mon Oct 20 02:07:38 UTC 2014 <diametric> docker is just using lxc
Mon Oct 20 02:06:48 UTC 2014 <jurov> so.. does this docker thing work with grsec and makes easier chroots with readonly-bind-mounted stuff?
Mon Oct 20 02:04:26 UTC 2014 <diametric> what you end up with is an image you can use on any linux running docker, be it ubuntu, gentoo, arch or lfs.
Mon Oct 20 02:03:40 UTC 2014 <diametric> asciilifeform: now if you're relying on docker to be a jail for the purposes of security, than that alone isn't ideal.
Mon Oct 20 02:03:22 UTC 2014 <diametric> asciilifeform: docker's purpose isn't security per se. an escape can be irrelevant. if anything its a nice system for compartmentalizing your system and preventing the pollution of your filesystem with random libraries needed by a single application.
Mon Oct 20 02:00:36 UTC 2014 <*> asciilifeform is innocent of docker
Mon Oct 20 02:00:11 UTC 2014 <diametric> asciilifeform: is there an incident that started the discussion? all i see here is a lot of "using docker insecurely is insecure."
Mon Oct 20 01:57:35 UTC 2014 <assbot> 57 results for 'docker' : http://search.bitcoin-assets.com/?q=docker
Mon Oct 20 01:57:34 UTC 2014 <asciilifeform> !s docker
Mon Oct 20 01:56:58 UTC 2014 <asciilifeform> diametric: whole mess of rumination re: 'docker' earlier today.
Sun Oct 19 23:49:01 UTC 2014 <mats_cd03> immutability is one of the design mitigations in docker
Sun Oct 19 23:47:49 UTC 2014 <undata> mircea_popescu: You can make changes to a docker by hand, then make an image from that. It's better to stick to your Dockerfile, but you don't have to.