Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
コンテーナーの話
Search
Sponsored
·
SiteGround - Reliable hosting with speed, security, and support you can count on.
→
Ian Lewis
June 04, 2014
Technology
110
0
Share
コンテーナーの話
Ian Lewis
June 04, 2014
More Decks by Ian Lewis
See All by Ian Lewis
Kubernetes Security Best Practices
ianlewis
38
26k
The Enemy Within: Running untrusted code in Kubernetes
ianlewis
0
1.4k
The Enemy Within: Running untrusted code with gVisor
ianlewis
4
1.3k
KubeCon EU Runtime Track Recap
ianlewis
3
1.7k
コンテナによるNoOpsオートメーション
ianlewis
2
190
Google Kubernetes Engine 概要 & アップデート @ GCPUG Kansai Summit Day 2018
ianlewis
2
980
Extending Kubernetes with Custom Resources and Operator Frameworks
ianlewis
10
3.9k
Kubernetesのセキュリティのベストプラクティス
ianlewis
12
17k
Scheduling and Resource Management in Kubernetes
ianlewis
2
1.4k
Other Decks in Technology
See All in Technology
Oracle Cloud Infrastructure:2026年3月度サービス・アップデート
oracle4engineer
PRO
0
320
自分をひらくと次のチャレンジの敷居が下がる
sudoakiy
5
1.6k
FlutterでPiP再生を実装した話
s9a17
0
240
AWSで2番目にリリースされたサービスについてお話しします(諸説あります)
yama3133
0
110
契約書からの情報抽出を行うLLMのスループットを、バッチ処理を用いて最大40%改善した話
sansantech
PRO
3
340
OPENLOGI Company Profile for engineer
hr01
1
62k
Babylon.js Japan Activities (2026/4)
limes2018
0
140
GitHub Advanced Security × Defender for Cloudで開発とSecOpsのサイロを超える: コードとクラウドをつなぐ、開発プラットフォームのセキュリティ
yuriemori
1
120
QA組織のAI戦略とAIテスト設計システムAITASの実践
sansantech
PRO
1
310
ThetaOS - A Mythical Machine comes Alive
aslander
0
230
スクラムを支える内部品質の話
iij_pr
0
170
Amazon Qはアマコネで頑張っています〜 Amazon Q in Connectについて〜
yama3133
1
170
Featured
See All Featured
[RailsConf 2023 Opening Keynote] The Magic of Rails
eileencodes
31
10k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
46
2.7k
How to Align SEO within the Product Triangle To Get Buy-In & Support - #RIMC
aleyda
1
1.5k
Exploring the relationship between traditional SERPs and Gen AI search
raygrieselhuber
PRO
2
3.8k
Prompt Engineering for Job Search
mfonobong
0
240
First, design no harm
axbom
PRO
2
1.2k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
231
54k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
122
21k
Why Your Marketing Sucks and What You Can Do About It - Sophie Logan
marketingsoph
0
120
世界の人気アプリ100個を分析して見えたペイウォール設計の心得
akihiro_kokubo
PRO
68
38k
Bioeconomy Workshop: Dr. Julius Ecuru, Opportunities for a Bioeconomy in West Africa
akademiya2063
PRO
1
81
<Decoding/> the Language of Devs - We Love SEO 2024
nikkihalliwell
1
170
Transcript
コンテーナーの話
1. 誰 2. 何 3. 何故
1. 何 2. 誰 3. 何故
何
LXC
LinuX Container
•Kernel namespaces (ipc, uts, mount, pid, network and user) Apparmor
and SELinux profiles Seccomp policies Chroots (using pivot_root) Kernel capabilities Control groups (cgroups)
import lxc container = lxc.Container("p1") container.create("ubuntu") container.start() container.get_ips() container.stop()
PYTHON
PYTHON3
chroot
None
namespaces
mount UTS Network SysV IPC
cgroups
Resource limits Prioritization Accounting Control
誰
2006
None
2014
EVERYTHING at Google runs in a container
None
None
None
None
( ̄∇ ̄;)
April 2008
None
None
None
CoreOS
何故
セキュリティ
リソース
パフォーマンス
スケーラビリティ
THE END
ianlewis
oracle4engineer
sudoakiy
s9a17
yama3133
sansantech
hr01
limes2018
yuriemori
aslander
iij_pr
eileencodes
bcantrill
aleyda
raygrieselhuber
mfonobong
axbom
destraynor
panda_program
marketingsoph
akihiro_kokubo
akademiya2063
nikkihalliwell
