Christoph Anton Mitterer <[email protected]> writes: > Hmm, I'd have blindly guessed that all of systemd's security options > apply only per cgroup... and the sessions which run in their own cgroup > wouldn't inherit them... but you may be right..
That would explain Micah's results, and would certainly be a nice way to implement it. I wasn't sure if namespaces were per-cgroup or if those were two separate things that had to be handled independently. -- Russ Allbery ([email protected]) <http://www.eyrie.org/~eagle/> -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: https://lists.debian.org/[email protected]
