Do namespaces provide processes with their own view of the system? _____
Yes
Can namespaces isolate users per process? _____
Yes
The available namespaces in Linux are, pid, net, _____, uts, ipc, user, time, cgroup
mnt
Can namespaces isolate networking per process? _____
Yes
The available namespaces in Linux are, pid, net, mnt, uts, _____, user, time, cgroup
ipc
Processes within the _____ namespace can only see the other processes within it.
PID
The available namespaces in Linux are, pid, net, mnt, uts, ipc, user, time, _____
cgroup
Can network namespaces communicate with each other via a bridge network? _____
Yes
Does each PID namespace have its own numbering? _____
Yes
The PID 1 namespace is removed from a PID namespace. What happens? _____
The PID namespace is destroyed
Using _____ namespaces, you can improve security by giving a unique /tmp or /proc directories to every user.
mnt
Can namespaces isolate UTS per process? _____
Yes
The available namespaces in Linux are, pid, _____, mnt, uts, ipc, user, time, cgroup
net
Can PID namespaces be nested? (namespace within namespace within namespace...) _____
Yes
Namespaces are created with the _____ syscall.
clone()
A newly made process inherits its namespaces from the _____ process.
parent
The available namespaces in Linux are, pid, net, mnt, uts, ipc, _____, time, cgroup
user
The available namespaces in Linux are, _____, net, mnt, uts, ipc, user, time, cgroup
pid
Can namespaces isolate Inter-Process Communication per process? _____
Yes
You can specify the mounted filesystems/devices visible to a process inside a _____ namespace.
mount namespace
Can process namespaces be used to isolate processes? _____
Yes
An mnt namespace's mounts be _____ or shared
private
Can namespaces isolate mounts per process? _____
Yes
Can namespaces isolate drives and devices per process? _____
Yes
______ allow processes to use identically named resources and isolate them.
namespaces
The /proc/[pid]/ns/ directory contains the process's _____
links to namespaces used by the process
Using the _____ namespaces, processes can be given their own root filesystem (conceptually close to chroot)
mnt
How many namespaces of can a process simultaneously be in? _____
One of each type
"When PID namespaces are nested inside one another, a process inside one has as many _____ as the namespace levels it is nested in. This is how features like """"docker in docker"""" can be implemented."""
PIDs
"Network namespaces can use Virtual Ethernet (veth) pairs to communicate. This involves creating two _____ acting as a """"cross-over cable"""" between them."""
virtual network interfaces
Can namespaces isolate hostnames per process? _____
Yes
The available namespaces in Linux are, pid, net, mnt, uts, ipc, user, _____, cgroup
time
The command setns _____
adds a process to an existing namespace
The available namespaces in Linux are, pid, net, mnt, _____, ipc, user, time, cgroup
uts
Can namespaces isolate PIDs per process? _____
Yes
The command nsenter _____
enters a Linux namespace
The _____ namespace allows processes to have their own semaphores, message queues and shared memory, without risk of conflict with other processes.
IPC
Can namespaces isolate resources per one or more processes? _____
Yes
The _____ namespace allows you to map the UID/GID of processes. Even though you might be a privileged user with UID 0 in a container, you will just be user xxxxx on the host.
user
An mnt namespace's mounts be private or _____
shared
The command ip link set dev eth0 netns ns0 _____
moves a network interface eth0 to namespace ns0
The last process inside a namespace dies. What happens? _____
The namespace is destroyed. You can prevent this by creating a bind mount inside the namespace.
The _____ namespace allows processes inside one to have their own network stack: sockets, iptables, routing tables and network interfaces (including loopback)
net
The command _____ moves a network interface eth0 to namespace ns0
ip link set dev eth0 netns ns0
A process is in a namespace. Which system resources can it see or affect? _____
Only those allowed in the namespace.
The _____ namespace lets a container mount something, and make it invisible to other containers.
mnt
The command _____ enters a Linux namespace
nsenter
The command _____ adds a process to an existing namespace
setns
The _____ directory contains the process's links to namespaces used by the process
/proc/[pid]/ns/