Hello,
I've been reading about unpriviledged user namespaces and apparently the use of it is considered unsafe. It can make vulnerabilities in the Linux kernel more easily exploitable.
Is this still true with the kernel of the latest version of Debian?
Thanks
Scheduled Maintenance: We are aware of an issue with Google, AOL, and Yahoo services as email providers which are blocking new registrations. We are trying to fix the issue and we have several internal and external support tickets in process to resolve the issue. Please see: viewtopic.php?t=158230
User namespaces (unpriviledged)
Re: User namespaces (unpriviledged)
Apparently since the release of Bullseye, it is enabled by default (https://www.debian.org/releases/bullsey ... namespaces):
Code: Select all
The previous Debian default was to restrict this feature to processes running as root, because it exposed more security issues in the kernel. However, as the implementation of this feature has matured, we are now confident that the risk of enabling it is outweighed by the security benefits it provides.