Skip to content
This repository has been archived by the owner on Dec 22, 2023. It is now read-only.

Doc: User namespace are disable by default in debian #35

Open
ikus060 opened this issue Feb 7, 2021 · 1 comment
Open

Doc: User namespace are disable by default in debian #35

ikus060 opened this issue Feb 7, 2021 · 1 comment

Comments

@ikus060
Copy link

ikus060 commented Feb 7, 2021

We should leave a notice in the README about Debian hardening regarding userns.

To enable, we need to:

echo 1 > /proc/sys/kernel/unprivileged_userns_clone

and make it persistant using:

echo 'kernel.unprivileged_userns_clone=1' > /etc/sysctl.d/userns.conf

I'm also reading a similar path is available for newer kernel with a different switch.
@radhermit
Copy link
Contributor

We should leave a notice in the README about Debian hardening regarding userns.

I don't use Debian so it would be helpful if you make a PR adding a subsection to the requirements section of the README.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@radhermit @ikus060