A demo of the thing I’ve been working on with the rest of the Fastly Lab team is now public! — Terrarium: safely run precompiled, native, concurrent, isolated, untrusted code server-side without any hypervisor or container https://www.fastlylabs.com/ (with a lot of Rust BTS).
-
Show this thread
-
Some cool examples you can run in the Fastly Terrarium environment:https://github.com/jedisct1/fastly-terrarium-examples …
1 reply 2 retweets 8 likesShow this thread -
Replying to @jedisct1
Cool! Looking at the source of the DoH module, what can "DNS::query_raw" do? Will it send a query to a 'terrarium system resolver'? Or can I send to arbitrary servers? I'd like to run 'tres' on Terrarium of possible!
3 replies 0 retweets 1 like -
Replying to @PowerDNS_Bert
To avoid being abused, the API doesn’t let you choose the server. But you can send and receive raw DNS packets, which is pretty cool. There is also a simplified API to send A/AAAA queries.
1 reply 0 retweets 0 likes -
Replying to @jedisct1
Hmm, and outgoing TCP connections, are those allowed? I could run a TCP only nameserver then..
1 reply 0 retweets 0 likes -
Replying to @PowerDNS_Bert
HTTP only, at least for now. This is just to demo our isolation system and the final API is likely to be different. But your feedback is very welcome!
1 reply 0 retweets 0 likes -
Replying to @jedisct1
Well, I do wonder about the profile is the isolation system - what would people run in it. No isolate is an island, it will always need to talk to other things too. And these other things might then themselves not run in a 'worker' & still be serverful & do bulk of the work.
1 reply 0 retweets 0 likes
Custom access control, custom caching, custom steering/load balancing, building webpages by aggregating output from micro services, reformatting content for individual client devices… There are probably many more.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.