New upstream version 1.4.0

author: Steve Langasek <steve.langasek@canonical.com> 2020-08-11 14:54:29 -0700
committer: Steve Langasek <steve.langasek@canonical.com> 2020-08-11 14:54:29 -0700
commit: f6d08ed47a3da3c08345bce2ca366e961c52ad7c (patch)
tree: dcbd0efb229b17f696f7195671f05b354b4f70fc /modules/pam_namespace/namespace.conf
parent: 668b13da8f830c38388cecac45539972e80cb246 (diff)
parent: 9e5bea9e146dee574796259ca464ad2435be3590 (diff)
download: pam-f6d08ed47a3da3c08345bce2ca366e961c52ad7c.tar.gz
pam-f6d08ed47a3da3c08345bce2ca366e961c52ad7c.tar.bz2
pam-f6d08ed47a3da3c08345bce2ca366e961c52ad7c.zip
1 files changed, 4 insertions, 1 deletions
diff --git a/modules/pam_namespace/namespace.conf b/modules/pam_namespace/namespace.conf
index b611a0f2..75ec6193 100644
--- a/modules/pam_namespace/namespace.conf
+++ b/modules/pam_namespace/namespace.conf
@@ -21,7 +21,10 @@
 # is explicitly called with an argument to ignore the mode of the
 # instance parent. System administrators should use this argument with
 # caution, as it will reduce security and isolation achieved by
-# polyinstantiation.
+# polyinstantiation. The parent directories (except $HOME) are created
+# at boot by pam_namespace_helper, but in a live system, system
+# administrators should create the parent directories before enabling
+# them here.
 #
 #/tmp     /tmp-inst/       	level      root,adm
 #/var/tmp /var/tmp/tmp-inst/   	level      root,adm
author	Steve Langasek <steve.langasek@canonical.com>	2020-08-11 14:54:29 -0700
committer	Steve Langasek <steve.langasek@canonical.com>	2020-08-11 14:54:29 -0700
commit	f6d08ed47a3da3c08345bce2ca366e961c52ad7c (patch)
tree	dcbd0efb229b17f696f7195671f05b354b4f70fc /modules/pam_namespace/namespace.conf
parent	668b13da8f830c38388cecac45539972e80cb246 (diff)
parent	9e5bea9e146dee574796259ca464ad2435be3590 (diff)
download	pam-f6d08ed47a3da3c08345bce2ca366e961c52ad7c.tar.gz pam-f6d08ed47a3da3c08345bce2ca366e961c52ad7c.tar.bz2 pam-f6d08ed47a3da3c08345bce2ca366e961c52ad7c.zip