#microvm — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #microvm, aggregated by home.social.
-
I started today's note yesterday, but ran out of energy.. As a bonus, I learned about the Chinese Room today so I included a link there:
-
des VM qui démarrent encore plus vite sous proxmox : microvm
-
There is no reliable and user-friendly way to isolate AI agents on macOS other than separate hardware. Every emerging sandboxing tool is a bundle of compromises that falls apart under real workflows.
I’m still exploring but what I’ve seen is that it’s either back to the Linux From Scratch times, pinky-promises built on deprecated dependencies or good ideas that only work for very simple demos.
#aiagent #security #agentsIsolation #agentsSandboxing #microVM #claude #opencode #hermesAgent
-
People of Proxmox, https://github.com/rcarmo/pve-microvm is now shipping, and works fine (although it still lacks a few creature comforts). #proxmox #microvm
-
"The infrastructure for the world needs to catch up with where AI agents are -- quite pointedly, agents break the container model." Mark Cavage, President and COO, Docker, Inc.
Now, #Docker and NanoCo (creators of NanoClaw) are working on that infrastructure with an integration between the minimalist alternative to #OpenClaw and #DockerSandboxes that further isolates #AIagents within a #microVM for safer business use. https://www.techtarget.com/searchitoperations/news/366640195/NanoClaw-AI-agents-find-a-home-in-Docker-Sandboxes
-
-
Learn how smolBSD creates minimal (10 MB) NetBSD VMs that boot in 10ms. Full UNIX system, Docker-like workflow, runs on QEMU and Firecracker.
Full guide here: https://ostechnix.com/build-10mb-netbsd-vms-boot-10ms-smolbsd/
#smolbsd #netbsd #microvm #unix #virtualmachine #opensource #qemu #firecracker
-
Learn how smolBSD creates minimal (10 MB) NetBSD VMs that boot in 10ms. Full UNIX system, Docker-like workflow, runs on QEMU and Firecracker.
Full guide here: https://ostechnix.com/build-10mb-netbsd-vms-boot-10ms-smolbsd/
#smolbsd #netbsd #microvm #unix #virtualmachine #opensource #qemu #firecracker
-
Learn how smolBSD creates minimal (10 MB) NetBSD VMs that boot in 10ms. Full UNIX system, Docker-like workflow, runs on QEMU and Firecracker.
Full guide here: https://ostechnix.com/build-10mb-netbsd-vms-boot-10ms-smolbsd/
#smolbsd #netbsd #microvm #unix #virtualmachine #opensource #qemu #firecracker
-
Learn how smolBSD creates minimal (10 MB) NetBSD VMs that boot in 10ms. Full UNIX system, Docker-like workflow, runs on QEMU and Firecracker.
Full guide here: https://ostechnix.com/build-10mb-netbsd-vms-boot-10ms-smolbsd/
#smolbsd #netbsd #microvm #unix #virtualmachine #opensource #qemu #firecracker
-
Learn how smolBSD creates minimal (10 MB) NetBSD VMs that boot in 10ms. Full UNIX system, Docker-like workflow, runs on QEMU and Firecracker.
Full guide here: https://ostechnix.com/build-10mb-netbsd-vms-boot-10ms-smolbsd/
#smolbsd #netbsd #microvm #unix #virtualmachine #opensource #qemu #firecracker
-
How I connect microvm.nix VMs to my home network VLANs.
VMs get deterministic MAC addresses derived from their hostname, so the router handles all DNS and IP assignment.
-
#AIAnToan #Sandboxing #KhoaHocDuLieu #AIQuanLy
Giới hạn hành vi tự chủ của agent AI thông qua sandboxing – bài viết phân tích rủi ro từ truy cập tool không kiểm soát, lộ trình mạng/hệ thống, và các giải pháp như Docker, Firecracker, gVisor. Tìm hiểu cách tối ưu an toàn trong sản phẩm.
#AIUnsafe #AnToanCongNghe #QuanLyAI #Container #MicroVM #GVisor #DevOps #Cybersecurity
https://www.reddit.com/r/programming/comments/1po8ar9/sandboxing_ai_agents_practical_ways_to_limit/
-
#AIAnToan #Sandboxing #KhoaHocDuLieu #AIQuanLy
Giới hạn hành vi tự chủ của agent AI thông qua sandboxing – bài viết phân tích rủi ro từ truy cập tool không kiểm soát, lộ trình mạng/hệ thống, và các giải pháp như Docker, Firecracker, gVisor. Tìm hiểu cách tối ưu an toàn trong sản phẩm.
#AIUnsafe #AnToanCongNghe #QuanLyAI #Container #MicroVM #GVisor #DevOps #Cybersecurity
https://www.reddit.com/r/programming/comments/1po8ar9/sandboxing_ai_agents_practical_ways_to_limit/
-
As you can see the build process is smooth, the execution is blazingly fast. What more could I ask for?
#programming #technology #BSD #netBSD #metaOS #microVM #networking #qemu #host #bmake #curl #sshd #Linux
-
As you can see the build process is smooth, the execution is blazingly fast. What more could I ask for?
#programming #technology #BSD #netBSD #metaOS #microVM #networking #qemu #host #bmake #curl #sshd #Linux
-
As you can see the build process is smooth, the execution is blazingly fast. What more could I ask for?
#programming #technology #BSD #netBSD #metaOS #microVM #networking #qemu #host #bmake #curl #sshd #Linux
-
As you can see the build process is smooth, the execution is blazingly fast. What more could I ask for?
#programming #technology #BSD #netBSD #metaOS #microVM #networking #qemu #host #bmake #curl #sshd #Linux
-
As you can see the build process is smooth, the execution is blazingly fast. What more could I ask for?
#programming #technology #BSD #netBSD #metaOS #microVM #networking #qemu #host #bmake #curl #sshd #Linux
-
The mighty world of BSD
Playing with again smolBSD, a fantastic metaOS system that I talked about a few weeks ago.
I'm a newbie, a greenhorn, when it comes to meta-operating systems built on top of NetBSD.I am very eager to learn by doing, making mistakes in the process, correcting and feel the warmth of the BSD community, who is happy to correct, esp when I show that I read the docs after making the mistakes
The journey is fantastic, the learning process is fun. microVM's are amazing. I've registered 11ms boot times on this small machine with a few CPU cores (and 40GB RAM). The fun is endless
#programming #technology #BSD #netBSD #metaOS #microVM #networking #qemu #host #bmake #curl #sshd #Linux
-
The mighty world of BSD
Playing with again smolBSD, a fantastic metaOS system that I talked about a few weeks ago.
I'm a newbie, a greenhorn, when it comes to meta-operating systems built on top of NetBSD.I am very eager to learn by doing, making mistakes in the process, correcting and feel the warmth of the BSD community, who is happy to correct, esp when I show that I read the docs after making the mistakes
The journey is fantastic, the learning process is fun. microVM's are amazing. I've registered 11ms boot times on this small machine with a few CPU cores (and 40GB RAM). The fun is endless
#programming #technology #BSD #netBSD #metaOS #microVM #networking #qemu #host #bmake #curl #sshd #Linux
-
The mighty world of BSD
Playing with again smolBSD, a fantastic metaOS system that I talked about a few weeks ago.
I'm a newbie, a greenhorn, when it comes to meta-operating systems built on top of NetBSD.I am very eager to learn by doing, making mistakes in the process, correcting and feel the warmth of the BSD community, who is happy to correct, esp when I show that I read the docs after making the mistakes
The journey is fantastic, the learning process is fun. microVM's are amazing. I've registered 11ms boot times on this small machine with a few CPU cores (and 40GB RAM). The fun is endless
#programming #technology #BSD #netBSD #metaOS #microVM #networking #qemu #host #bmake #curl #sshd #Linux
-
The mighty world of BSD
Playing with again smolBSD, a fantastic metaOS system that I talked about a few weeks ago.
I'm a newbie, a greenhorn, when it comes to meta-operating systems built on top of NetBSD.I am very eager to learn by doing, making mistakes in the process, correcting and feel the warmth of the BSD community, who is happy to correct, esp when I show that I read the docs after making the mistakes
The journey is fantastic, the learning process is fun. microVM's are amazing. I've registered 11ms boot times on this small machine with a few CPU cores (and 40GB RAM). The fun is endless
#programming #technology #BSD #netBSD #metaOS #microVM #networking #qemu #host #bmake #curl #sshd #Linux
-
The mighty world of BSD
Playing with again smolBSD, a fantastic metaOS system that I talked about a few weeks ago.
I'm a newbie, a greenhorn, when it comes to meta-operating systems built on top of NetBSD.I am very eager to learn by doing, making mistakes in the process, correcting and feel the warmth of the BSD community, who is happy to correct, esp when I show that I read the docs after making the mistakes
The journey is fantastic, the learning process is fun. microVM's are amazing. I've registered 11ms boot times on this small machine with a few CPU cores (and 40GB RAM). The fun is endless
#programming #technology #BSD #netBSD #metaOS #microVM #networking #qemu #host #bmake #curl #sshd #Linux
-
🚀🔥 Oh joy, another tool claiming to simplify #Docker with a sprinkle of #microVM magic! Bottlefire: for those who think turning container images into cumbersome, zero-dependency Linux executables is the pinnacle of #innovation. 🐢⚙️ Because nothing screams 'progress' like shuffling dependencies into convoluted bash scripts.
https://bottlefire.dev/ #Simplification #ContainerTools #BashScripts #HackerNews #ngated -
🤔 Ever wonder how to escape from a container? Or how security tools know what permissions they have from inside that same container? It's nice to have a great script for #enumeration ... but what does it check for and why does it matter?
Who am I? - Let’s get oriented and figure out what we have in our container. (https://some-natalie.dev/container-escapes-whoami/)
Our shared kernel - #Containers are processes that share a kernel. What can we see about our host? (https://some-natalie.dev/container-escapes-shared-kernel/)
Are we capable? - What sort of capabilities do we have? (https://some-natalie.dev/container-escapes-capabilities/)
Seccomp is your friend - #Seccomp filters what a container can do. Let’s learn what’s been set for us. (https://some-natalie.dev/container-escapes-seccomp/)
Are we in a microVM? - With #microVM runtimes gaining popularity, how do you know if you’re in a container? (https://some-natalie.dev/blog/microvm-or-container/)
(or, I did a little editing and put my workshop from @appsec_village at #DEFCON33 up) :heart_cybre:
-
🤔 Ever wonder how to escape from a container? Or how security tools know what permissions they have from inside that same container? It's nice to have a great script for #enumeration ... but what does it check for and why does it matter?
Who am I? - Let’s get oriented and figure out what we have in our container. (https://some-natalie.dev/container-escapes-whoami/)
Our shared kernel - #Containers are processes that share a kernel. What can we see about our host? (https://some-natalie.dev/container-escapes-shared-kernel/)
Are we capable? - What sort of capabilities do we have? (https://some-natalie.dev/container-escapes-capabilities/)
Seccomp is your friend - #Seccomp filters what a container can do. Let’s learn what’s been set for us. (https://some-natalie.dev/container-escapes-seccomp/)
Are we in a microVM? - With #microVM runtimes gaining popularity, how do you know if you’re in a container? (https://some-natalie.dev/blog/microvm-or-container/)
(or, I did a little editing and put my workshop from @appsec_village at #DEFCON33 up) :heart_cybre:
-
🤔 Ever wonder how to escape from a container? Or how security tools know what permissions they have from inside that same container? It's nice to have a great script for #enumeration ... but what does it check for and why does it matter?
Who am I? - Let’s get oriented and figure out what we have in our container. (https://some-natalie.dev/container-escapes-whoami/)
Our shared kernel - #Containers are processes that share a kernel. What can we see about our host? (https://some-natalie.dev/container-escapes-shared-kernel/)
Are we capable? - What sort of capabilities do we have? (https://some-natalie.dev/container-escapes-capabilities/)
Seccomp is your friend - #Seccomp filters what a container can do. Let’s learn what’s been set for us. (https://some-natalie.dev/container-escapes-seccomp/)
Are we in a microVM? - With #microVM runtimes gaining popularity, how do you know if you’re in a container? (https://some-natalie.dev/blog/microvm-or-container/)
(or, I did a little editing and put my workshop from @appsec_village at #DEFCON33 up) :heart_cybre:
-
🤔 Ever wonder how to escape from a container? Or how security tools know what permissions they have from inside that same container? It's nice to have a great script for #enumeration ... but what does it check for and why does it matter?
Who am I? - Let’s get oriented and figure out what we have in our container. (https://some-natalie.dev/container-escapes-whoami/)
Our shared kernel - #Containers are processes that share a kernel. What can we see about our host? (https://some-natalie.dev/container-escapes-shared-kernel/)
Are we capable? - What sort of capabilities do we have? (https://some-natalie.dev/container-escapes-capabilities/)
Seccomp is your friend - #Seccomp filters what a container can do. Let’s learn what’s been set for us. (https://some-natalie.dev/container-escapes-seccomp/)
Are we in a microVM? - With #microVM runtimes gaining popularity, how do you know if you’re in a container? (https://some-natalie.dev/blog/microvm-or-container/)
(or, I did a little editing and put my workshop from @appsec_village at #DEFCON33 up) :heart_cybre:
-
🤔 Ever wonder how to escape from a container? Or how security tools know what permissions they have from inside that same container? It's nice to have a great script for #enumeration ... but what does it check for and why does it matter?
- Who am I? - Let’s get oriented and figure out what we have in our container. (https://some-natalie.dev/container-escapes-whoami/)
- Our shared kernel - #Containers are processes that share a kernel. What can we see about our host? (https://some-natalie.dev/container-escapes-shared-kernel/)
- Are we capable? - What sort of capabilities do we have? (https://some-natalie.dev/container-escapes-capabilities/)
- Seccomp is your friend - #Seccomp filters what a container can do. Let’s learn what’s been set for us. (https://some-natalie.dev/container-escapes-seccomp/)
- Are we in a microVM? - With #microVM runtimes gaining popularity, how do you know if you’re in a container? (https://some-natalie.dev/blog/microvm-or-container/)
(or, I did a little editing and put my workshop from @appsec_village at #DEFCON33 up) :heart_cybre:
-
Decided to blog what I learned about Ubuntu multipass MicroVMs. Enjoy.
https://blog.faucher.net/2025/08/ubuntu-multipass-microvms.html
-
Really fast boot. Not for me. I'll stick to containers and the odd KVM VM using virt-manager.
-
This is so damn cool. Relatively secure docker in docker with very an isolated docker daemon context and low overhead. A great alternative to MicroVM's like #Firecracker.
https://www.docker.com/resources/docker-in-docker-containerized-ci-workflows-dockercon-2023/
I love the presentation style too. I followed along in my terminal and everything worked. So much more helpful for me than "go to this website to learn more".
-
My #NixOS 23.12 upgrade story for all the servers and VMs I manage:
Let's start with the terrible. Grafana crashed because it is missed a directory when using provisioned dashboards. Fix is in https://github.com/NixOS/nixpkgs/pull/272564
Then I searched an hour for a faulty change I did two days ago where I didn't think about split Portunus LDAP server and applications and needed to move a mkIf.
That's two #MicroVM|s done. The next two just worked without any changes and nothing broke (so far?).
-
This is a brief demonstration how to run a #MicroVM using my #Firecracker executor within Apache #Mesos.
-
#Nix #VirtualMachinesmicrovm.nix is a #Flake to run lightweight #NixOS virtual machines on #NixOS. Starting with the reasons why for the remainder of this chapter, this handbook guides you through the provisioning of #MicroVM-s on your #NixOS machine.
https://astro.github.io/microvm.nix/intro.html
