From owner-freebsd-questions@freebsd.org Fri Feb 14 16:00:13 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2D08423910F for ; Fri, 14 Feb 2020 16:00:13 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from kicp.uchicago.edu (kicp.uchicago.edu [128.135.20.70]) by mx1.freebsd.org (Postfix) with ESMTP id 48Jyl025Ypz3HhT for ; Fri, 14 Feb 2020 16:00:12 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from point.uchicago.edu (point.uchicago.edu [128.135.52.6]) (Authenticated sender: galtsev) by kicp.uchicago.edu (Postfix) with ESMTPSA id C73804E6B9; Fri, 14 Feb 2020 10:00:11 -0600 (CST) Subject: Re: Technological advantages over Linux To: Victor Sudakov , freebsd-questions@freebsd.org References: <20200214121620.GA80657@admin.sibptus.ru> <20200214141600.GA82559@admin.sibptus.ru> From: Valeri Galtsev Message-ID: <1eb61cba-5e28-e8ea-c418-a06f0f94ec86@kicp.uchicago.edu> Date: Fri, 14 Feb 2020 10:00:11 -0600 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:68.0) Gecko/20100101 Thunderbird/68.4.1 MIME-Version: 1.0 In-Reply-To: <20200214141600.GA82559@admin.sibptus.ru> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 48Jyl025Ypz3HhT X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=fail reason="No valid SPF, No valid DKIM" header.from=uchicago.edu (policy=none); spf=none (mx1.freebsd.org: domain of galtsev@kicp.uchicago.edu has no SPF policy when checking 128.135.20.70) smtp.mailfrom=galtsev@kicp.uchicago.edu X-Spamd-Result: default: False [-1.68 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; DMARC_POLICY_SOFTFAIL(0.10)[uchicago.edu : No valid SPF, No valid DKIM,none]; NEURAL_HAM_MEDIUM(-0.95)[-0.950,0]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; NEURAL_HAM_LONG(-0.97)[-0.972,0]; MIME_GOOD(-0.10)[text/plain]; IP_SCORE(0.14)[ip: (0.40), ipnet: 128.135.0.0/16(0.20), asn: 160(0.16), country: US(-0.05)]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[70.20.135.128.list.dnswl.org : 127.0.10.0]; R_SPF_NA(0.00)[]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:160, ipnet:128.135.0.0/16, country:US]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Feb 2020 16:00:13 -0000 On 2020-02-14 08:16, Victor Sudakov wrote: > Ottavio Caruso via freebsd-questions wrote: >> On Fri, 14 Feb 2020 at 12:16, Victor Sudakov wrote: >>> >>> Dear Colleagues, >>> >>> Not to start a flame war. A purely technical question: what >>> technological advantages does the modern FreeBSD have over modern Linux? >> >> Sorry, but I find this sort of a chalk vs cheese kind of comparison. > > Of course not. When deciding what to use in the next project, you have > to advocate your choice in front of your superiors and colleagues, and > your presentation should be well backed up with technical arguments. > > When I advocate FreeBSD over Windows, for example, there are some very > clear and easily defendable technical and economical advantages (open > source, absence of viruses, BSD license - just to name a few). It is not > so easy with FreeBSD vs Linux. > > For example, the absence of Docker (or analogous technology) for FreeBSD > is a huge disadvantage. We need to name really superiour features to > make up for this shortage. > In my book docker is really a disadvantage, not advantage, compared to FreeBSD jails. Namely: 1. docker carries pretty much whole system for one instance of what you run in docker (that is, you have to patch all those instances of docker you run), whereas whole bunch of jails can run under single instance of base system; hence only one base system to update/patch 2. [correct me someone if I'm wrong, I'm not a Docker expert): docker has system whose components are read-write inside of its instance, hence it is more vulnerable to malicious changes from inside running docker instance, whereas base system stuff is (nullfs) read-only mounted in case of FreeBSD jail, so at least changes to that from inside jail can not be made by malicious attempts. Of course, "market drives", and of course as it is in case of consumer product market, ignorant in its mass consumer base drives market offerings towards poorer solutions. Non-Microsoft mass Operating System customer being mostly Linux, much less footprint for anything else, drives forward Linux based solutions [especially commercial ones]. Hence, if your superiors have a goal to be more independent of experts like you, but prefer to have employee base easily replaced (by more average though still decent sysadmins), if advised genuinely, they will lean towards Linux based anything. Just my two cents. Valeri > >> You start making comparisons, then you have to list all possible Linux >> distros, etc, you know the drill. > > In fact, there is quite a limited number of Linux distros to be > considered for use in production, maybe 3-4, and they are not that > different in their capabilities. Other distros are too exotic or geeky. > -- ++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++