This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
manuals:vps:vpsadminos [2020/01/13 19:57] – [Staging environment] keep platform Aither | manuals:vps:vpsadminos [2021/11/12 19:42] – [Migration from OpenVZ to vpsAdminOS] odstraněna zmínka o tom, že vpsAdminOS není v Brně. KerryCZE | ||
---|---|---|---|
Line 1: | Line 1: | ||
< | < | ||
====== vpsAdminOS ====== | ====== vpsAdminOS ====== | ||
- | Since [[information: | + | Since [[information: |
aren't supporting it, we had to find a way to upgrade our kernel, which | aren't supporting it, we had to find a way to upgrade our kernel, which | ||
meant choosing a different virtualization technology. Linux kernel now | meant choosing a different virtualization technology. Linux kernel now | ||
Line 34: | Line 34: | ||
- Testing, fixing bugs, implementing missing features, preparing for production | - Testing, fixing bugs, implementing missing features, preparing for production | ||
- New production nodes are using vpsAdminOS (:!: we're here :!:) | - New production nodes are using vpsAdminOS (:!: we're here :!:) | ||
- | - vpsAdminOS is available in Prague | ||
- Gradual migration of all VPS from OpenVZ nodes to vpsAdminOS, one node after another | - Gradual migration of all VPS from OpenVZ nodes to vpsAdminOS, one node after another | ||
- End of story | - End of story | ||
Line 48: | Line 47: | ||
===== Changes in VPS behaviour ===== | ===== Changes in VPS behaviour ===== | ||
- | ==== User namespaces ==== | ||
- | VPS in vpsAdminOS are using so called //user namespaces// | ||
- | means that your system user and group IDs are mapped to different values on | ||
- | the host. For example, the root user in your VPS has UID 0, but from the | ||
- | host's point of view, its UID is e.g. 666000. Every member has been assigned a | ||
- | unique user namespace, which ensures that your data is isolated from other | ||
- | users. In case an attacker manages to leave the container, he will not be able | ||
- | to access data from VPS belonging to other members. | ||
- | |||
- | Every member is assigned a user namespace of 524288 user/group IDs. It means | ||
- | that you can use UID/GID from 0 to 524287. All VPS from one member are in the | ||
- | same user namespace. In the future, it will be possible to define custom | ||
- | UID/GID maps for VPS and NAS datasets, which will let each member to isolate | ||
- | his own VPS and yet share some chosen range of user/group IDs. | ||
==== General ==== | ==== General ==== | ||
Line 72: | Line 57: | ||
* Network is configured using '' | * Network is configured using '' | ||
- | * ''/ | ||
* If there is a directory called ''/ | * If there is a directory called ''/ | ||
Line 98: | Line 82: | ||
All mounts are removed when cloning, because NAS isn't acessible as of yet, | All mounts are removed when cloning, because NAS isn't acessible as of yet, | ||
see [[# | see [[# | ||
- | |||
- | ==== Supported distributions ==== | ||
- | |||
- | * Alpine 3.8, 3.9 | ||
- | * Arch | ||
- | * CentOS 7, 8 | ||
- | * Debian 9, 10 | ||
- | * Fedora 29, 30 | ||
- | * Gentoo | ||
- | * NixOS | ||
- | * openSUSE Leap 15.1, Tumbleweed | ||
- | * Slackware 14.2 | ||
- | * Ubuntu 16.04, 18.04 | ||
- | * Void Linux | ||
==== Features ==== | ==== Features ==== |