| ▲ | mystifyingpoi 3 hours ago | |
`useradd` doesn't restrict network access. | ||
| ▲ | kaffekaka 3 hours ago | parent [-] | |
I have used a separate user, but lately I have been using rootless podman containers instead for this reason. But I know too little about container escapes. So I am thinking about a combination. Would a podman container run by a separate user provide any benefit over the two by themselves? | ||