[tor-commits] [Git][tpo/applications/tor-browser-build][main] Bug 41153: Update README for Ubuntu 24.04 unprivileged user namespace changes
boklm (@boklm)
git at gitlab.torproject.org
Sat Jun 1 11:54:57 UTC 2024
boklm pushed to branch main at The Tor Project / Applications / tor-browser-build
Commits:
bd033876 by NoisyCoil at 2024-06-01T10:49:06+02:00
Bug 41153: Update README for Ubuntu 24.04 unprivileged user namespace changes
- - - - -
1 changed file:
- README
Changes:
=====================================
README
=====================================
@@ -78,12 +78,18 @@ The build system is based on rbm, which is included as a git submodule
in the rbm/ directory. You can fetch the rbm git submodule by running
'make submodule-update'.
-The build uses user_namespaces(7), which are disabled by default on Debian.
-To enable them you can use the following command as root:
+The build uses user_namespaces(7), which are disabled by default on Debian
+and on Ubuntu v24.04 and later. To enable them on Debian you can use the
+following command as root:
# sysctl -w kernel.unprivileged_userns_clone=1
-You can enable them permanently by adding the setting to /etc/sysctl.d/
+To enable them on Ubuntu v24.04 and later, you can use the following command
+as root:
+
+ # sysctl -w kernel.apparmor_restrict_unprivileged_userns=0
+
+You can enable them permanently by adding the settings to /etc/sysctl.d/
The user you use to build needs to have a range of subordinate uids and
gids in /etc/subuid and /etc/subgid. Most of the time they are added by
View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/bd033876a91630e542a599dd2ca4c96e6dbf88e4
--
This project does not include diff previews in email notifications.
View it on GitLab: https://gitlab.torproject.org/tpo/applications/tor-browser-build/-/commit/bd033876a91630e542a599dd2ca4c96e6dbf88e4
You're receiving this email because of your account on gitlab.torproject.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-commits/attachments/20240601/35d254b9/attachment-0001.htm>
More information about the tor-commits
mailing list