Bug#727708: Quick upstart and systemd feature comparison

[Ian Jackson <ijackson@chiark.greenend.org.uk>]

Russ Allbery writes ("Bug#727708: Quick upstart and systemd feature comparison"):
> * StandardError=syslog.  This would be *so nice* for *so many things*.
>   Particularly for running Java applications, which are very bad about not
>   sending everything to syslog even when one tries to write them to do so.
>   I would start using this immediately.  There are various external
>   programs that can do this, but with sysvinit you have to set up the
>   pipelines yourself and worry about the programs dying, whereas systemd
>   takes care of all of that.

>From the documentation, upstart's default is to log your program's
stderr to a file in /var/log/upstart/.  I agree that diverting this to
syslog would be a useful feature.

> * Lots of really interesting defense-in-depth security features.  I
>   particularly liked ReadWriteDirectories, ReadOnlyDirectories,
>   InaccessibleDirectories, PrivateNetwork, and NoNewPrivileges, which
>   provide a sort of lightweight process containment that would be much
>   easier to use than a full-blown chroot, and in some ways more powerful.

I think that this functionality should be provided by "auxiliary verb"
wrapper commands, not welded into init.

Ian.