<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<style type="text/css" style="display:none"><!-- p { margin-top: 0px; margin-bottom: 0px; }--></style>
</head>
<body dir="ltr" style="font-size:12pt;color:#000000;background-color:#FFFFFF;font-family:Calibri,Arial,Helvetica,sans-serif;">
<p>Hi,<br>
</p>
<p><br>
</p>
<p>There are a bunch of sandboxing options that I am trying to enable but I got no effects when I am setting them. Below are the options that I am trying to set, but I can't seem to turn them on.<br>
</p>
<p><br>
</p>
<div>LockPersonality=true</div>
<div>MemoryDenyWriteExecute=true</div>
<div>RestrictRealtime=true</div>
<div>RestrictSUIDSGID=true</div>
<div>RestrictNamespaces=</div>
<div>SystemCallArchitectures=native</div>
<div>#SystemCallArchitectures=option</div>
<div>UMask=0000</div>
<div>#UMask=0033</div>
<div><br>
I have enabled the following kernel configurations:<br>
</div>
<div><br>
</div>
<div>CONFIG_NAMESPACES=y<br>
</div>
CONFIG_NET_NS=y
<div>CONFIG_USER_NS=y</div>
<div>CONFIG_SECCOMP=y<br>
<p><br>
</p>
<p>Is there anything that I am missing?<br>
</p>
<p><br>
</p>
<p>Best Regards,<br>
</p>
<div id="Signature">
<div name="divtagdefaultwrapper" style="font-family:Calibri,Arial,Helvetica,sans-serif; font-size:; margin:0">
Christopher Wong ​ </div>
</div>
</div>
</body>
</html>