Matt Helsley <matthltc@xxxxxxxxxx> writes: > Seems like an ok concept to me. Did you try doing this with > anon_inodes and bind mounting the /proc/<pid>/fd/N as above to keep > them alive and name them? Of course this part doesn't work in my patch because I have the wrong mnt_ns on my mount MS_NOUSER on my superblock. MS_NOUSER is easy to get past. Getting a vfsmount in the proper mnt namespace could be tricky. Eric -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
