Most container runtimes are based on namespaces and cgroups (docker, lxc, runc). I am wondering if there are on-the-market or open-source containers that are not based on these technologies? Do you know some names?
Before the introduction of cgroups and namespaces, the isolation consisted to use chroot() . But this was insufficient from a security point of view. As only the file system was isolated. And it is possible to escape from a "chrooted" environment.
This link provides an history of the containerization techniques in the Unix/Linux world.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.