Jailing Namespaces wip
mycroftiv : you can use newns to set up a new namespace that doesnt access anything you dont want and rfnomnt
mycroftiv : youd just need to add a new rfork flag (basically trivial) and add a check to long
mycroftiv : bindmount(int ismount, int fd, int afd, char* arg0, char* arg1, int flag, char* spec)
mycroftiv : in sysfile.c
mycroftiv : i mean, need to tweak proc a little too to have the data structure for rfork, but its just adding like one var to the struct