• IAm_A_Complete_Idiot@sh.itjust.works
    link
    fedilink
    arrow-up
    1
    ·
    11 months ago

    Yep! You can also get pretty far even without containers. At the end of the day containers are just sandboxing using namespaces, and systemd can expose that pretty trivially for services, and tools like bubble wrap / flatpak let you do it for desktop apps. In an ideal world every package would only use the namespaces it needs, and stuff like this would largely not be a concern.