On 2020-02-02 13:05+0000, Nigel Rantor wrote:
> [...]
> I have recently been thinking about whether or not it might be easier
> to have a much more stripped down machine and use docker to run my
> services on top of.
There's no need to strip the VPS down. You can run a docker container on
top of what you currently run. It may even make migration to containers
easier this way. As things migrate, you can remove from the VPS.
> Not sure how I would do this with rails websites, I currently use
> Phusion passenger to service them all.
I didn't ever get on with ruby from a code point of view so I don't tend
to install things that need it. I cannot comment on it.
> Wondering if anyone has experience running docker on a VPS within
> BitFolk. I'm not sure if there are any virtulisation limitations that
> would stop this either.
Yes, I'm running a DNS server that handles 300-ish queries per second
for all.s5h.net, an RBL. There's nine other containers that handle web
things.
For web things, they're great. If I write something poorly, then
hopefully it's contained and if someone were to exploit it, hopefully
they'll only get themselves into a limited broom cupboard and not the
engine room. A proper VPS higher security, of course as it's not sharing
the same kernel. I think, from memory Solaris zones don't share the
kernel but run a 'thin' kernel.
I would have built the mail server in a container, but ten years ago or
whenever I set it up in BitFolk I was not clever enough to think about
containers :)
> I am going to be upgrading my machine to a more recent LTS version
> soonish since my current distribution is going EOL this year.
>
> So, yes, I will probabyl end up doing what I normally do but considering
> dockerising my services and not even sure if it would work on a VPS or
> whether it would just be more trouble than its worth.
You'll find system upgrades easier in container land. Just don't store
your data in the container, setup something in /var/local or /usr/local
that you don't wipe between OS upgrades.
--
Best regards,
Ed
http://www.s5h.net/
