2·
2 months agoI know, yes. But I’m talking about virtualization, not containerizarion
- 0 Posts
- 6 Comments
Joined 9 months ago
Cake day: February 7th, 2025
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Personally, I want to properly isolate the services with virtualization. The main reason is I expose some of the services online, and I don’t t want to only rely on keeping all software up-to-date at all times. This allows me to limit the damage if one of the services is compromised.
I wouldn’t use MacOS as the virtualization platform, and instead use something else, like BSD, Linux, or xen-based for my servers
27·2 months agoIf it’s so easy, why don’t you make it? What a waste of a post, really
23·5 months agoIsn’t that the bare minimum mandated by the EU?
Xcp-ng might have the edge against bare metal because Windows uses virtualization by default uses Virtualization-Based Security (VBS). Under xcp-ng it can’t use that since nested virtualization can’t be enabled.
Disclaimer: I’m a maintainer of the control plane used by xcp-ng
While it performs well nd has fancy new features, it’s still lacking one that I use every day: find words on the already-printed text: https://github.com/ghostty-org/ghostty/issues/189
It looks like it’s going to take months until it’s available