namespace: clarify that /proc/apm is obsolete, but leave it blocked

2016-11-17 18:10:01 +01:00 · 2016-11-17 18:10:01 +01:00 · aa70f38b5c
parent c6232fb0e9
commit aa70f38b5c
1 changed files with 1 additions and 1 deletions
--- a/src/core/namespace.c
+++ b/src/core/namespace.c
@ -79,7 +79,7 @@ static const BindMount protect_kernel_tunables_table[] = {
        { "/proc/sysrq-trigger", READONLY,     true  },
        { "/proc/latency_stats", READONLY,     true  },
        { "/proc/mtrr",          READONLY,     true  },
-        { "/proc/apm",           READONLY,     true  },
+        { "/proc/apm",           READONLY,     true  }, /* Obsolete API, there's no point in permitting access to this, ever */
        { "/proc/acpi",          READONLY,     true  },
        { "/proc/timer_stats",   READONLY,     true  },
        { "/proc/asound",        READONLY,     true  },