ACG Containers Flashcards

1
Q

What is a Linux namespace?

Linux Namespace

A

A network namespace is a logical copy of the network stack from the host system. Network namespaces are useful for setting up containers or virtual environments. Each namespace has its own IP addresses, network interfaces, routing tables, and so forth.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is ‘user’ namespace?

Linux Namespace

A

The user namespace is a key security feature; as each namespace can be given its own distinct set of UIDs and GUIDs.
- A user namespace can be nested up to 32 times (nested virtualization)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is an ‘IPC’ namespace?

Linux Namespace

A

IPC stands for Inter-Process Communications. This namespace isolates systems resources from a process, while giving processes created in an IPC namespace visibility to each other allowing for inter-process communication.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the ‘UTS’ namespace?

Linux Namespace

A

The UTS namespace allows a single system to appear to have a different host and domain names to different process

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is a ‘mount’ namespace?

Linux Namespace

A

The mount namespace controls the mountpoints that are visible to each container

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is a ‘PID’ namespace?

Linux Namespace

A

The PID namespace provides processes w/ an independent set of process IDs (PIDs).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the ‘network’ namespace?

Linux Namespace

A

The network namespace virtualizes the network stack

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

How many Linux namespaces are there?

Linux Namespace

A

6 - user, IPC, UTS, mount, PID, network

7th - cgroups (containers)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What OS was the 1st to adopt the chroot command?

a. Redhat
b. Ubuntu
c. Unix 7
d. Kubernetes

A

c. Unix 7

The chroot system call was introduced during the development of Version 7 Unix in 1979.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Bill Cheswick helped develop what technology?

a. Docker
b. Kubernetes
c. chrooted jail
d. Mesos

A

c. chrooted jail
An early use of the term ‘jail’ as applied to chroot comes from Bill Cheswick creating a honeypot to monitor a cracker in 1991.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Process containers were later renamed? (choose 2)

a. LXC
b. control group
c. Linux Containers
d. cgroups

A

b. control groups
c. cgroups
To avoid any confusion with the usage of the term containers process containers were renamed Control groups or Cgroups

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is the name of the container orchestration system Google open sourced and that later became known as Kubernetes?

a. Borg
b. Swarm
c. Pod
d. Minion

A

a. Borg
Google’s Borg system is a cluster manager that runs hundreds of thousands of jobs, from many thousands of different applications, across a number of clusters each with up to tens of thousands of machines

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What was the original project name for Kubernetes?

a. Nexus
b. Dotcloud
c. Project Seven of Nine
d. Pinehead TV

A

c. Project Seven of Nine
The original codename of Kubernetes within Google was “Project Seven of Nine”, a reference to the Star Trek character “Seven of Nine”.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What does a control group do?

a. Control groups help you orchestrate the deployment of your containers
b. Control groups help you better add and remove systems users
c. Cgroups allow you to allocate resources among groups of processes running on a system
d. Control groups help ensure high availability of services through replication.

A

c. Cgroups allow you to allocate resources among groups of processes running on a system

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What Docker technology allows containers to run in a computer cluster?

a. Docker Swarm
b. Solaris
c. EC2 instance
d. Kubernetes

A

a. Docker Swarm
Docker Swam provides cluster management and orchestration functionality, allowing containers to be run in a cluster of machines.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Command for Network Name Space

Network Namespace

A

sudo ip netns add sample1