[Podman] Re: Rootless - Native overlay not shown in df or mount commands
On 9/6/21 3:55 PM, Giuseppe Scrivano wrote:
for rootless it is more of a necessity than for extra security.
In the new mount namespace it is still possible to access all the
existing mount points from the host.
For root, it could make sense to have a separate mount namespace so that
the mount points won't be visible from the host. This setup is not
currently supported, you'd need to create it manually.
Thanks Giuseppe.