From 61f1f142d7b562fe6e84d6882b4a1c64ac275b62 Mon Sep 17 00:00:00 2001
From: Daniel Baumann <daniel.baumann@open-infrastructure.net>
Date: Fri, 11 Jan 2019 06:21:08 +0100
Subject: Adding comment about enabling user namespace in procps configuration.

Signed-off-by: Daniel Baumann <daniel.baumann@open-infrastructure.net>
---
 share/procps/zz-container-tools.conf | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/share/procps/zz-container-tools.conf b/share/procps/zz-container-tools.conf
index 8b15f11..c464c42 100644
--- a/share/procps/zz-container-tools.conf
+++ b/share/procps/zz-container-tools.conf
@@ -11,3 +11,6 @@ fs.inotify.max_user_instances=1048576
 
 # /proc/sys/fs/inotify/max_user_watches defaults to 8192
 fs.inotify.max_user_watches=1048576
+
+# Enabling user namespace, disabled by default (#898446)
+#kernel.unprivileged_userns_clone=1
-- 
cgit v1.2.3