Ohhhhh... Now I see :)Nick, OpenVZ, for example, uses "User Bean Counters" patch originally developed by Alan Cox. The good thing is that it is fully separate from virtualization and allows to control any users or set of processes. Don't you think it is valuable and helpful feature itself? Why are you afraid of resource management?
I'm afraid of resource management because I've seen things like the
ckrm cpu resource manager.
Considering we tend to mostly have only per-process resource management,it depends. if you want trully secure environment in Linux, resource management is a MUST. Also, per-process management is not natural from user POV.
low level virtualisation seems like a much better place to do this.