Download as PDF, PPTX
![Example Configuration file
kernel:
image: "linuxkit/kernel:4.9.34"
cmdline: "console=ttyS0 console=tty0 page_poison=1"
init:
- linuxkit/init:36c56f0664d49c5a6adc1120d1bf5ba6ac30b389
- linuxkit/runc:291131ec026430371e7c36165c3f43734fbc2541
- linuxkit/containerd:1e3e8f207421de8deac8cedc26a138d6b1661a0d
onboot:
- name: dhcpcd
image: "linuxkit/dhcpcd:6c1ca76dbf808d5c27d10cbf22a8d4399be5c8ae"
command: ["/sbin/dhcpcd", "--nobackground", "-f", "/dhcpcd.conf",
"-1"]
services:
- name: getty
image: "linuxkit/getty:6d35e3fe138aaeaf099b5b4f31b3f12ba725cb49"
env:
- INSECURE=true
trust:
org:
- linuxkit](https://image.slidesharecdn.com/moby-170705034110/85/Project-Moby-8-320.jpg)
Uploaded byNeependra Khare
Project Moby
Moby is a project that aims to build specialized container systems by assembling containerized components. It uses Docker's underlying container and image technologies but is intended for system architects rather than developers. The Moby project includes components like containerd, runc, and LinuxKit. Moby-tool allows building systems by configuring and assembling different container images specified in a YAML configuration file. It produces artifacts like ISOs and AMIs. The goal is to build secure, modern systems using containers with read-only roots and minimal privileges.
More Related Content
![谷歌留痕技术教程[ 𝙩𝙤𝙥 𝟮𝟯𝟯. 𝙘 𝙤𝙢 ]](https://cdn.slidesharecdn.com/ss_thumbnails/top233-260130173900-2eb784f9-thumbnail.jpg?width=640&height=640&fit=bounds)
Project Moby
- 1. Project Moby Neependra Khare,CloudYuga @neependra
- 2. Docker != Moby •docker/docker -> moby/moby • More than a simple rename • Nothing changes for Docker releases (Docker CE/ EE) • docker is for developers • moby is for system architects
- 3. How Docker isbeing built
- 4. Moby “Moby is aframework to assemble specialized container systems” • A library of containerised component • OS • Container runtime • Orchestration • Infrastructure • Storage, networking etc • Tools to assemble to create runnable artifacts for different platform • Bare Metal • VM images • Executables for Linux, Mac and Windows • All of the components are containers • Uses containerd as default container runtime
- 5. Moby Projects • infrakit •containerd • runc • notary • linuxkit • datakit • vpnkit • swarmkit
- 6. moby-tool • The moby-toolbuilds systems • by assembling different containerised components • LinuxKit is first use case
- 7. moby-tool moby-tool Boot scripts Kernel Configuration Containers ServiceContainers ISOs AMIs ……
- 8. Example Configuration file kernel: image:"linuxkit/kernel:4.9.34" cmdline: "console=ttyS0 console=tty0 page_poison=1" init: - linuxkit/init:36c56f0664d49c5a6adc1120d1bf5ba6ac30b389 - linuxkit/runc:291131ec026430371e7c36165c3f43734fbc2541 - linuxkit/containerd:1e3e8f207421de8deac8cedc26a138d6b1661a0d onboot: - name: dhcpcd image: "linuxkit/dhcpcd:6c1ca76dbf808d5c27d10cbf22a8d4399be5c8ae" command: ["/sbin/dhcpcd", "--nobackground", "-f", "/dhcpcd.conf", "-1"] services: - name: getty image: "linuxkit/getty:6d35e3fe138aaeaf099b5b4f31b3f12ba725cb49" env: - INSECURE=true trust: org: - linuxkit
- 9. moby-tool Configuration Reference https://github.com/moby/tool/blob/master/docs/yaml.md • kernel •init • onboot • services • files • trust • Image Specification • Mount Option
- 10.
- 11. Security • Only containswhat we want • Modern Kernel • Read-only root file-system • Containerized Service with minimal privileges
- 12. References • http://mobyproject.org • https://github.com/moby/tool •https://github.com/linuxkit • Online Docker Meetup • https://www.youtube.com/watch?v=nhoEVCMz7Qk
- 13.