mirror of
https://github.com/containers/podman.git
synced 2025-10-30 09:25:59 +08:00
80c0fceb24
From a security point of view, it would be nice to be able to map a rootless usernamespace that does not use your own UID within the container. This would add protection against a hostile process escapping the container and reading content in your homedir. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>