Add another link about user namespaces to Q&A

author Alexander Popov <alex.popov@linux.com>

Mon, 13 Jul 2020 15:27:35 +0000 (18:27 +0300)

committer Alexander Popov <alex.popov@linux.com>

Mon, 13 Jul 2020 15:27:35 +0000 (18:27 +0300)
author Alexander Popov <alex.popov@linux.com>
Mon, 13 Jul 2020 15:27:35 +0000 (18:27 +0300)
committer Alexander Popov <alex.popov@linux.com>
Mon, 13 Jul 2020 15:27:35 +0000 (18:27 +0300)
diff --git a/README.md b/README.md

index c5cc464071aae5b8376c33fe7eff8888202cb59c..12c3cd0e661de97a47a30d0ec66fe051819fb7b2 100644 (file)
--- a/README.md
+++ b/README.md
@@ -233,6 +233,8 @@ The rationale:
  
    - A twitter thread about `CONFIG_USER_NS` and security: https://twitter.com/robertswiecki/status/1095447678949953541
  
+  - A good overview of the trade-off between having user namespaces enabled, disabled and available only for root: https://github.com/NixOS/nixpkgs/pull/84522#issuecomment-614640601
+
  <br />
  
  __Q:__ Why `CONFIG_GCC_PLUGINS` is automatically disabled during the kernel compilation?
author	Alexander Popov <alex.popov@linux.com>
	Mon, 13 Jul 2020 15:27:35 +0000 (18:27 +0300)
committer	Alexander Popov <alex.popov@linux.com>
	Mon, 13 Jul 2020 15:27:35 +0000 (18:27 +0300)