Simon Tournier <[email protected]> writes: >> Perhaps you can instead get away with: >> >> sysctl kernel.apparmor_restrict_unprivileged_userns off >> >> as discussed in <https://issues.guix.gnu.org/77296>. >> >> I spent hours trying to come up with an AppArmor profile for ‘guix shell >> -C’ in <https://issues.guix.gnu.org/71226>, but now we also need >> something for the unprivileged daemon. > > Well, maybe all this could be tracked by an issue,
Agreed; see <https://issues.guix.gnu.org/77296>. Thanks, Ludo’.
