mirror of
https://github.com/jackyzha0/quartz.git
synced 2025-12-25 13:54:05 -06:00
355 B
355 B
Containers can be isolated using Linux namespaces or cgroups.
Linux namespaces serve to limit what the containers can see. Isolation happens on the user, filesystem or process level.
cgroups are used to limit resource usage.
Links:
implemented by:: Linux Kernel also has namespaces for isolation :::part of:: CKS
202403241200