You are not logged in.
There is quite a discussion in FS#36969 around the risks of enabling user namespaces in the kernel. I'm unclear about several aspects:
*Enabling this option makes LXCs safer but at the cost of decreasing security on the host?
*How contemporary are the arguments against enabling this option now that that FS is several years and many kernel versions old?
CPU-optimized Linux-ck packages @ Repo-ck • AUR packages • Zsh and other configs
Offline
*How contemporary are the arguments against enabling this option now that that FS is several years and many kernel versions old?
https://git.kernel.org/cgit/linux/kerne … b526cc44ef fixed in 4.8.14
Offline