On Thu, Apr 29, 2021 at 12:31:21PM +0200, Paul Gevers wrote: > The previous Debian default was to restrict this feature to processes > running as root, because it exposed more security issues in the > kernel. However, the security benefits of more widespread sandboxing > probably now outweigh this risk.
I don't really like the use of "probably" in this reasoning. We should have a more definitive answer than "it's probably fine", or should at least justify our decision somehow. Maybe we could replace the last sentence with something to the effect of "However, as the implementation of this feature has matured, we are now confident that the risk of enabling it is outweighed by the security benefits it provides." Just a thought. It's still a little hand-wavey, but at least provides some justification for the change. noah
