Web lists-archives.com

Re: What are the differences between systemd and non-systemd Linux distros?


On Tue, Oct 16, 2018 at 01:36:06PM -0400, Dan Ritter wrote:
> On Tue, Oct 16, 2018 at 12:05:58PM -0400, Jude DaShiell wrote:
> > 2) systemd is supposed to be a security improvement over systemv.
> Do you know who told you that, or where it was written down?

It's true to some extent.

systemd.exec(5) describes systemd's abilities to run a service in a
separate network/mount namespace, in a different SELinux contenxt,
remove certain capabilities, etc.
There is nothing that cannot be done in sysvinit given sufficient amount
of wrappers embedded in each and every sysvinit script, yet nobody done
that (save SELinux) yet.

On the other hand we have rather ... dismissive (let's call it that)
attitude at systemd's upstream regarding security bug reports. [1] and
[2], to show some examples.


[1] https://github.com/systemd/systemd/issues/6237
[2] https://github.com/systemd/systemd/issues/4234