How to Set Up a Full Remote Desktop Access on Ubuntu Server with VNC, noVNC, Websockify, and Nginx

30. April 2025 | Linux Containers | Docker | LXC | runc

Accessing a full Ubuntu graphical desktop environment via a simple web browser on Port 80 sounds impossible?Not anymore.In this post, we’ll walk through everything we needed to achieve exactly that – step-by-step, clean, and reliable. You’ll also get a complete cheat...

Docker Demystified: What Really Happens Behind Images, Containers & Layers 🚀

30. April 2025 | Docker

„You don’t truly understand Docker until you stop thinking in commands and start thinking in layers.“ Welcome to the ultimate deep-dive into Docker’s internal architecture – beyond the typical „10 must-know commands“ and into what really makes...

Day 2 Task: Minimal Container with a Private Root Filesystem

27. April 2025 | runc Lab

Day 2 Task: Minimal Container with a Private Root Filesystem Goal:Manually mount a minimal filesystem and run a process inside it, fully isolated. Step 1 — Create a minimal root filesystem On your lab machine: bash KopierenBearbeiten mkdir -p ~/mycontainer/rootfs sudo...

Day 1 Task: Build a Basic Isolated Shell

27. April 2025 | runc Lab

Day 1 Task: Build a Basic Isolated Shell Goal:Start a real shell process isolated into its own namespaces,limited by a cgroup that restricts CPU usage. Step 1 — Create a new isolated shell On your lab machine: bash KopierenBearbeiten sudo unshare –fork...

runc: a tiny „mini-lab“ environment setup

27. April 2025 | runc

Perfect, let’s keep it simple and practical. Here’s your Mini-Lab Setup: 1. Create a safe playground machine You don’t want to mess up your main workstation by mistake.The best is a small, disposable virtual machine. Options: Use VirtualBox (free) +...

runc is like the „actual hands“ that create containers

27. April 2025 | Linux Containers | Docker | LXC | runc, runc

runc is: A tiny but critical tool for containers. It’s a command-line utility that can create and run containers according to the Open Container Initiative (OCI) spec. It’s actually what Docker (and many other container systems) use under the hood to start and manage...

Why you wouldn’t run hundreds of containers directly on VMware / vSphere

27. April 2025 | Linux Containers | Docker | LXC | runc

Running Docker on VMware / vSphere (VSX, etc.) in your own datacenter: Still depends on your hardware (if the server dies, the VM dies, containers die). Still depends on your VMware infrastructure (and VMware itself can crash or have bugs). You add another layer of...

Why you wouldn’t run hundreds of containers directly on bare metal

27. April 2025 | Linux Containers | Docker | LXC | runc

Why you wouldn’t run hundreds of containers directly on bare metal: Single point of failure → if the kernel or hardware dies, everything dies. Kernel risk → one bad kernel update could wipe out hundreds of containers at once. Hard to isolate performance issues →...

What happens if, for example, with LXC or Docker, there is some kernel change? Will it also change the kernel of those Docker containers?

27. April 2025 | Linux Containers | Docker | LXC | runc

Short version: LXC and Docker containers share the host’s kernel. They don’t have their own separate kernel inside the container. So: if the host’s kernel changes (upgrade, patch, bug, security fix) → it immediately affects all containers running on...

What do to control groups and namespaces do

15. April 2025 | Linux Containers | Docker | LXC | runc

Nice one — here’s the simple version: Control groups (cgroups) = control „how much“ resources a process can use (CPU, memory, disk I/O, network, etc.). Example: „This container can only use 1 CPU and 512MB RAM.“ Namespaces = control...