[redhat-lspp] New pam src rpm with namespace
Stephen Smalley
sds at tycho.nsa.gov
Thu Feb 16 15:30:21 UTC 2006
On Thu, 2006-02-16 at 10:14 -0500, JANAK DESAI wrote:
> hmm.. if you call unshare from a helper program, it will only affect the
> namespace
> of the helper program. You can move mount/umount processing to another
> program
> but you still need to call unshare from the pam_namespace module.
I see. And unshare requires CAP_SYS_ADMIN presently?
--
Stephen Smalley
National Security Agency
More information about the redhat-lspp
mailing list