> We've been kicking around ideas for managing files on volumes. This is a commo... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		joseph on May 15, 2022 \| parent \| context \| favorite \| on: Fly.io: The reclaimer of Heroku's magic > We've been kicking around ideas for managing files on volumes. This is a common problem – it's actually more difficult than you'd expect because "securitah". Once your volume is mounted in one of your VMs, we can't run tools outside the VM to let you manage the file system. On something like k8s with vanilla Docker, we could. But no one should run multitenant Docker. Was there a reason for not using something similar to kata containers where you run a microvm but still use containers inside them? It seems like it would make such things easier while getting the isolation of a VM.

jpgvm on May 16, 2022 [–]

They do that already AFAICT by using Firecracker.

joseph on May 16, 2022 | [–]

Unless they’ve changed things, there is no containerization within the VM a la kata. They run their own custom init inside the VM and use it to start the entry point. https://github.com/superfly/init-snapshot is the source.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact