QubesOS – A reasonably secure operating system

(www.qubes-os.org)

176 points TheFreim | 1 comments | 11 Jul 23 18:11 UTC | HN request time: 0.204s | source

Show context

flashback2199 ◴[11 Jul 23 18:59 UTC] No.36685709[source]▶

I really like QubesOS, but you cannot run VMs inside a qube, or other things that require VMs like Docker Desktop for Linux, because the xen hypervisor does not support nested virtualization.

replies(6): >>36685864 #>>36685932 #>>36686060 #>>36686247 #>>36687110 #>>36687975 #

yankput ◴[11 Jul 23 20:56 UTC] No.36687110[source]▶

>>36685709 #

Huh… why does Docker require VMs on Linux? Isn’t the selling point of Docker that it uses the same kernel on Linux?

And it should be quite lightweight as it’s just a container…

It’s not that I don’t believe you but I don’t understand it… why would you need VM on Linux for Docker?

edit: huh

https://docs.docker.com/desktop/faqs/linuxfaqs/#:~:text=Dock....

that’s… a bit stupid in my opinion. But you can always just use the default daemon so, eh. whatever. maybe I’m wrong. there are reasons I guess

replies(2): >>36687255 #>>36688668 #

1. flashback2199 ◴[11 Jul 23 21:10 UTC] No.36687255[source]▶

>>36687110 #

It's a good question - docker doesn't require a VM on Linux, but Docker Desktop does. I assume it's to make it basically the same experience as on Docker Desktop on Windows and macOS, but I'm not totally sure. You can install docker the same way one would on a server in a qube in QubesOS and it works fine, I think I tried that once just to be sure, I just wanted to be able to have Docker Desktop. I also didn't want to paint myself into a corner in case I should need to run something else that also expects to be able to run a VM.

↑