Quoting "Jon Bendtsen" <jbendtsen@laerdal.dk>:
>>
>> Is there some kind of flag I can set to make this work? What else
>> should I try?
>
> danger! alert! security risk!
>
> If you give your guest the mount capability then I am sure it can do
> what you want to do.
>
Don't be so sure! The server has long time had a number of insecure
settings crucial for LTSP operation, ccaps:
BINARY_MOUNT
SECURE_MOUNT
SECURE_REMOUNT
SET_UTSNAME
RAW_ICMP
SYSLOG
NAMESPACE
FS_SECURITY
And bcaps:
NET_RAW
MKNOD
I think MKNOD is removable now, but was need for building the LTSP chroot.
Cheers,
==
From Ben Green