There is a weird corner case I'm trying to wrap my head around.
unlink and rmdir do not work on dentries that are mount points
in another mount namespace.
Which is at least needed for the moment so we don't leak mounts.
Once we have unprivileged mounts does that introduce a DOS attack?