Comment 14 for bug 1552042

I though that pretty much any time you mount a filesystem directly you are exposed to potential security problems. I wonder if the right option here is to just remove the non libguestfs fallback. It seems completely reasonable to just require that one known safe path.