Containers: Are They Virtual Machines with Magical Powers?
Containers are all the rage. But if you're going to use them—especially in production—you need a good conceptual foundation so you can understand their capabilities and implications. People often describe containers as “lightweight virtual machines,” which is misleading as it suggests there's some sort of hypervisor involved. Liz Rice explains what a container really is while creating one live with just a few lines of code. Learn what namespaces, control groups, and changing root are, and how to use them to create a container and give it a restricted view of what’s happening on the host machine. Liz presents live demos to show the effect that different namespaces have on a running process, and illustrates how to use control groups to constrain the resources that a containerized process can access. By understanding what containers are and their capabilities, you can better understand their implications for performance and security in a production environment.