Hi,
Just a librewolf user with desire to migrate to badwolf. But I wonder why I have to set
'sysctl kernel.unprivileged_userns_clone=1'
Any security explanations here?
Thanks a lot,
Xavier
[2023-10-08 14:26:14+0000] Xavier B.:
> Just a librewolf user with desire to migrate to badwolf. But I wonder why I have to set
> 'sysctl kernel.unprivileged_userns_clone=1'
>
> Any security explanations here?
Yeah, this is required for the sandbox based on bubblewrap when the bwrap executable isn't suid-root.
Probably should check with your distro if this is expected as I would see it as an integration bug.
Best regards