Y
Hacker News
new
|
ask
|
show
|
jobs
by
cyphar
2817 days ago
Bubblewrap supports user namespaces and has for a while -- grep through the source for CLONE_NEWUSER. I talk about the security concerns a bit in [1].
[1]:
https://news.ycombinator.com/item?id=18181034