Paul Colomiets

> Is there a security feature implemented to prevent access to /sys and /proc from inside of a container created with your unshare? Not exactly. But you can either change...

Hi! I'm not sure it's because of user namespace. Isn't it because `pivot_root` requires both things to be mountpoints not mere directories? I'm all for adding documentation describing the issue....

> I'd like to play with it, what's your use case? or asked differently: what program crashes currently without the terminal size? This is the crash: https://github.com/edgedb/edgedb-cli/runs/666845514?check_suite_focus=true Note, the crash...

Also see this this thread on the similar issue: https://github.com/containers/libpod/issues/351

@monomonedula, does your transaction take a lot of time? Transactions should not be left open while you're doing some slow work like downloading files, sending emails, or doing any sort...

@fantix is it possible that connection is pre-emptied by the server because of too many connections or something?

Also few notes for ourselves on how we can improve debugging of such cases after we figure out the real issue: 1. If this is a full traceback the error...

> there're also very marginal cases to take care of like forking happened during a query or transaction. The error above and very apparent security issue (i.e. wrong reply matched...

Take a look at [self-replace crate](https://crates.io/crates/self-replace) for actual removal of the binary.

What is the intended action? Do we have an API to stop but don't delete?