Simon McVittie
2021-07-23 09:30:01 UTC
Package: release-notes
Severity: normal
Tags: patch moreinfo
X-Debbugs-Cc: debian-***@lists.debian.org
If I understand correctly, user.max_user_namespaces is an upstream kernel
feature, but kernel.unprivileged_userns_clone comes from a Debian-specific
patch that might be removed in future releases. It seems better to recommend
the upstream version (also used in e.g. RHEL).
A possible patch is attached, but I'd prefer to get confirmation from
a kernel maintainer before applying this, hence tagged +moreinfo.
smcv
Severity: normal
Tags: patch moreinfo
X-Debbugs-Cc: debian-***@lists.debian.org
If I understand correctly, user.max_user_namespaces is an upstream kernel
feature, but kernel.unprivileged_userns_clone comes from a Debian-specific
patch that might be removed in future releases. It seems better to recommend
the upstream version (also used in e.g. RHEL).
A possible patch is attached, but I'd prefer to get confirmation from
a kernel maintainer before applying this, hence tagged +moreinfo.
smcv