New comment by crtxcr on void-packages repository

https://github.com/void-linux/void-packages/pull/41337#issuecomment-1367126001

Comment:
@sgn Yes, @paper42  said that much already and I replied why I believe it should be enabled.

To expand on that, I really think regarding landlock the better question is why not to enable it, given it operates on a per-process basis. It doesn't do anything if a process doesn't use it. For those who do, it can serve as a useful tool to create sandboxes or mitigate the effects of exploited vulnerabilities. If, like currently, it simply off a process that would otherwise utilize it might not benefit from it. 

It can be assumed most users will not add it to lsm= boot parameters, so they won't benefit from it.

It's also on in Arch, Gentoo, Fedora and Ubuntu. If it was a problematic module it would have been noticed by now. So why shouldn't void enable it too?