On Fri, Jun 12, 2015 at 11:12 AM, Ludovic Courtès <l...@gnu.org> wrote: > "Thompson, David" <dthomps...@worcester.edu> skribis: > >> Yeah, our daemon would do the same thing. We could maybe even have a >> little Guile library that allows one to evaluate arbitrary scheme code >> from within the container. :) > > Actually, something quite easily feasible would be this: > > (eval-in-container #~(system* #$evil-program > #$(local-file "important-data.txt")) > #:networking? #f) > > ... where the container’s store would be populated with just > EVIL-PROGRAM and the local file. > > Food for thought...
Ooooh yeah! That would be cool. Though I think we should still spawn a dmd process as PID 1 to deal with reaping zombie processes. We could generate a single service that runs the gexp script. How does that sound? Thanks for this good idea! - Dave
