So simple yet effective demonstration! Always struggled to understand concept of namespaces. After the findmnt command I was like "Aha! I got it now". Thank you very much!
Gemini 1.5 Pro: This video is part one of a series on container security fundamentals. In this part, the video talks about Linux namespaces and how they are used to isolate resources on a host. The video starts by explaining what Linux namespaces are and the different types of namespaces that are available. There are eight namespaces available in total, but only six of them are enabled by default when using Docker containers. These six namespaces are mount, network, PID, IPC, UTS, and cgroups. The video then goes into detail about how to use the `lsns` command to list the namespaces on a machine. This command shows the number of processes using a given set of namespaces. The video also explains how to use the `findmnt` command to view how the mount namespace has been set up for a container. This command shows all of the information about the mounted file systems for that process. Finally, the video talks about how to use the `NS enter` program to interact with different Linux namespaces. This program allows you to run commands in the namespace of a process. This can be useful for inspecting a container on a machine without having to use Docker tooling. The next video in the series will go into more depth about some of the other namespaces that are used by Linux containers.
Heyy, I have Ubuntu in my windows(WSL2), and when I check the namespaces after running the container nothing added in the list and when I ran the findmnt command using the container PID it said No Such file or directory, what can be the reason?
So simple yet effective demonstration! Always struggled to understand concept of namespaces. After the findmnt command I was like "Aha! I got it now". Thank you very much!
Gemini 1.5 Pro: This video is part one of a series on container security fundamentals. In this part, the video talks about Linux namespaces and how they are used to isolate resources on a host.
The video starts by explaining what Linux namespaces are and the different types of namespaces that are available. There are eight namespaces available in total, but only six of them are enabled by default when using Docker containers. These six namespaces are mount, network, PID, IPC, UTS, and cgroups.
The video then goes into detail about how to use the `lsns` command to list the namespaces on a machine. This command shows the number of processes using a given set of namespaces. The video also explains how to use the `findmnt` command to view how the mount namespace has been set up for a container. This command shows all of the information about the mounted file systems for that process.
Finally, the video talks about how to use the `NS enter` program to interact with different Linux namespaces. This program allows you to run commands in the namespace of a process. This can be useful for inspecting a container on a machine without having to use Docker tooling.
The next video in the series will go into more depth about some of the other namespaces that are used by Linux containers.
really great, thanks for the internals Sir
Very informative
This is great
Heyy, I have Ubuntu in my windows(WSL2), and when I check the namespaces after running the container nothing added in the list and when I ran the findmnt command using the container PID it said No Such file or directory, what can be the reason?
but I have the same doubt. Not really sure
How did you get the container pid ? and where did you check the namespaces ?