From 0ac85ea9f56abdf621ec1b4f2acf08a2450067ba Mon Sep 17 00:00:00 2001
From: Patrick Schleizer <adrelanos@whonix.org>
Date: Tue, 14 Jan 2025 03:54:35 -0500
Subject: [PATCH] comment

---
 .../permission-hardener.d/25_default_whitelist_fuse.conf | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/usr/lib/permission-hardener.d/25_default_whitelist_fuse.conf b/usr/lib/permission-hardener.d/25_default_whitelist_fuse.conf
index 8c5563a..084510c 100644
--- a/usr/lib/permission-hardener.d/25_default_whitelist_fuse.conf
+++ b/usr/lib/permission-hardener.d/25_default_whitelist_fuse.conf
@@ -5,6 +5,13 @@
 ## "/usr/local/etc/permission-hardener.d/20_user.conf" for your custom
 ## configuration. When security-misc is updated, this file may be overwritten.
 
-## required for AppImages such as electrum Bitcoin wallet
+## Critical component of FUSE (Filesystem in USErspace)
+##
+## Used by things such as:
+## - AppImages
+##   - such as electrum Bitcoin wallet
+## - Docker
+## If not SUID, unprivileged users will be unable to use FUSE any longer.
+##
 ## https://forums.whonix.org/t/disable-suid-binaries/7706/57
 /fusermount matchwhitelist