I personally trust RedHat more with setting good defaults than random ArchLinux users (that also recommend firejail), considering the audience of RedHat (particularly some government agencies)
Well yeah, and Microsoft is the world's most experienced software company and a superscaler who really knows how to secure infrastructure well, you really can't hope to compete with their security teams, right up to the part where their images come with a garbage port of their WMI garbage containing uncountably infinite LPEs and RCEs running with uid=0.
> I personally trust RedHat more with setting good defaults than random ArchLinux users (that also recommend firejail)
You speak as if these "random Arch Linux users" have written their opinions on the wiki rather than reasonable conclusions based on how unprivileged user namespaces have been a source security vulnerabilities in the past and is still seen as a security risk.
