On 9/7/07, Eric Van Hensbergen <ericvh@gmail.com> wrote:
Linux actually has private namespaces, its just off by default.  There
is a flag to clone which can be used to establish new processes in
private namespaces (CLONENS or some such thng).

Primary downside is that its superuser only -- but you could get
around it with setuid or custom kernel.

             -eric


Then you have to worry about what happens when people do things like binding over /etc/passwd :-)