Init Security Concerns...

Talk here about security in general. Posting illegals software is prohibited. All stuffs in this forum must be considered as for "Educational purpose only".
Post Reply
User avatar
n0ctilucient
Warlord
Warlord
Posts: 528
Joined: 21 Apr 2017, 15:59
Distribution: fullmoonremix
Location: 127.0.0.1
Contact:

Init Security Concerns...

Post#1 by n0ctilucient » 24 Nov 2018, 15:37

Love it or hate it Systemd is here to stay.
(Still mileage may very, and so as with many things... "the devil :evil: is in the details")

Therefore with that said, this could mean... there could be cause for concern.

"Consider" this... @ one time, there were concerns about the dismissive mentality that still persists in the systemd project to this day.
Systemd's "we don't make mistakes" attitude towards security can be seen in other places...

https://www.agwa.name/blog/post/how_to_ ... _one_tweet
From Linus...
None of this "I can do whatever I want, others have to clean up after me" crap.
https://lkml.org/lkml/2014/4/2/420

"Consider" also... the problem of mitigating an increased exploit Attack surface .
The systemd developers understand none of this, opting to cram an enormous amount of unnecessary complexity into PID 1, which runs as root and is written in a memory-unsafe language.

https://www.agwa.name/blog/post/how_to_ ... _one_tweet
:hmmm: I do NOT have the "right" to tell anyone what they should do...
but I reserve the "right" to tell them what they should "consider".

nanZor
Samurai
Samurai
Posts: 185
Joined: 09 Apr 2019, 03:27
Distribution: Porteus 5.0 RC1 XFCE
Location: Los Angeles

Init Security Concerns...

Post#2 by nanZor » 12 Apr 2019, 10:23

I think the most technically interesting and least dramatic pros and cons comes from a view from the outside - Benno Rice of FreeBSD about it. Of course BSD can't use it, but he is very interested in Cgroups.

https://www.youtube.com/watch?v=o_AIw9bGogo

Probably the most intelligent talk about it I've seen. Of course, some of us Porteus fans may also be full on Slackware fans accustomed to the bsd way of init - so this may be of interest.

My personal opinion is much like those expressed by Devuan. For me the biggest thing is the exlusivity - that is, our BSD friends coulnd't take a look at Porteus, get totally inspired, and create something like it themselves. Perhaps even sharing tips, tricks, and even code between teams. THAT is my biggest red-flag, and an indication that ok, anything systemd is just not unix, but something else. An "open source lock in" if you will. But that's just me.
That's a UNIX book - cool. -Garth

User avatar
n0ctilucient
Warlord
Warlord
Posts: 528
Joined: 21 Apr 2017, 15:59
Distribution: fullmoonremix
Location: 127.0.0.1
Contact:

Init Security Concerns...

Post#3 by n0ctilucient » 19 Apr 2019, 13:57

Sharing is caring. The The Cathedral and the Bazaar (BSD/Linux) should indeed encourage technological Ecumenism ("cooperation") :friends:

Systemd however... is nonecumenial. :devil:
:hmmm: I do NOT have the "right" to tell anyone what they should do...
but I reserve the "right" to tell them what they should "consider".

Post Reply