@pid_eins the point is that sometimes you need that context. If I'm in a toolbox sudo has to allow me to get things done in the context of the toolbox and not of the system root. I. principle I agree with you about suid, I just don't see how you can get rid of it with containers.