:: Re: [DNG] ..a viable basis for Devu…
Page principale
Supprimer ce message
Répondre à ce message
Auteur: Arnt Karlsen
Date:  
À: dng
Sujet: Re: [DNG] ..a viable basis for Devuan as a hypervisor?, was: libvirt package without X11 and DBus
On Sat, 7 Aug 2021 17:29:47 -0400, Hendrik wrote in message
<20210807212947.zzv7byj56xdfkvph@???>:

> On Fri, Aug 06, 2021 at 11:26:03PM +0200, Arnt Karlsen wrote:
> > On Fri, 6 Aug 2021 20:20:15 +0800, Brad wrote in message
> > <a02bce2c-6bee-2fad-875e-336020fa959e@???>:
> >
> > > On 6/8/21 5:12 pm, Andrzej Peszynski wrote:
> > > >
> > > >
> > > > On 06.08.2021 06:25, Brad Campbell via Dng wrote:    

> > > >>
> > > >> Why do you even need/want libvirt? I have several machines
> > > >> which run qemu guests just using simple bash scripts to bring
> > > >> them up (and all the bash script is there for is to hold the
> > > >> command line parameters). I like libvirt and virt-manager for
> > > >> configuring and customising the guests, but at the end of the
> > > >> day all that is is a fancy front end to qemu.   
> > > > <snip>    
> > > >> If you are stripping the guts out of libvirt, why use it in the
> > > >> first place?   
> > > > Brad, thanks a million! Learning is fun especially for a "apt
> > > > install" man as I am. I am looking now at how I can simplify all
> > > > this (may be stripping parts of QEMU too?), to keep running, and
> > > > handle my configurations and resources binding. In the end, all
> > > > what I need is executing in isolated ring the ELF of dozen of
> > > > (not trusted) proxies, servers and libraries + resources
> > > > balancing + isolated filesystems + sockets.

> > > >
> > > > From the other side, I think that the Type 1 hypervisor for
> > > > desktop is also interesting thing, It's very tempting to have
> > > > windowed multimachine with realtime switch capability.    

> >
> > ..I get the idea that Andrzej and I are looking for Brad's kinda
> > bare metal hypervisor Devuan install?
> > We might come up with minimal net-install size install image as an
> > alternative to https://en.wikipedia.org/wiki/Qubes_OS , only
> > without systemd and based on Devuan.
> >
> > ..in Debian and Devuan we often have package conflict that means
> > hold back upgrades or ditch good software we'd like to keep, those
> > conflicts disappears when we can contain each of those old or new
> > things in e.g. a vm.
>
> Isn't this the kind of problem the Nix package manager obviates?


..looks like it, and also looks like a viable alternative to Debian
as an upstream package source. We just need a to way to build or
convert nix packages into .debs, e.g. patching alien so it can be
used do it, and put them in our own mirrors.

> Wihout requiring anything as heavy as hypervisors?
>
> -- hendrik


..nix promises to solve package conflicts, not online security.
That's why also we need easily deployable Qubes-OS style web browser
"app" etc isolation in e.g. throw away single use virtual machines,
like those throw away Wintendo images Brad uses to prank fraudsters.

--
..med vennlig hilsen = with Kind Regards from Arnt Karlsen
...with a number of polar bear hunters in his ancestry...
Scenarios always come in sets of three:
best case, worst case, and just in case.