Nitin Agarwal neat article about Docker internals. Docker takes advantage of several features of the Linux kernel to deliver its functionality.
Article dives in to many features of the Docker including:
- Namespaces - provides a layer of isolation
- Cgroups - limits an application to a specific set of resources
- Union file systems - to provide the building blocks for containers
- Container Format - all above in a wrapper called a container format
Article also mentions Security. Docker Engine makes use of AppArmor, Seccomp, Capabilities kernel features for security purposes.
Good selection of supporting images and schema.
[Read More]