Hi Alexis, Alexis Simon <[email protected]> writes:
> But disabling the apparmor with > sudo sysctl kernel.apparmor_restrict_unprivileged_userns=0 > does work, although not ideal. Thanks for confirming. Perhaps you can instead get away with: sysctl kernel.apparmor_restrict_unprivileged_userns off as discussed in <https://issues.guix.gnu.org/77296>. I spent hours trying to come up with an AppArmor profile for ‘guix shell -C’ in <https://issues.guix.gnu.org/71226>, but now we also need something for the unprivileged daemon. It would be great if Ubuntu users out there could give a hand! Thanks, Ludo’.
