Idea #18993
Updated by Peter Amstutz over 2 years ago
Nice!
So a secure-ish way to do this would be to have a copy of @nsenter@ which has those capabilities, which is executable only by the crunch user.
If it's just copying the environment of the target process, any child process of sinit should do, right?