Bug#727708: Quick upstart and systemd feature comparison
Russ Allbery writes ("Bug#727708: Quick upstart and systemd feature comparison"):
> * StandardError=syslog. This would be *so nice* for *so many things*.
> Particularly for running Java applications, which are very bad about not
> sending everything to syslog even when one tries to write them to do so.
> I would start using this immediately. There are various external
> programs that can do this, but with sysvinit you have to set up the
> pipelines yourself and worry about the programs dying, whereas systemd
> takes care of all of that.
>From the documentation, upstart's default is to log your program's
stderr to a file in /var/log/upstart/. I agree that diverting this to
syslog would be a useful feature.
> * Lots of really interesting defense-in-depth security features. I
> particularly liked ReadWriteDirectories, ReadOnlyDirectories,
> InaccessibleDirectories, PrivateNetwork, and NoNewPrivileges, which
> provide a sort of lightweight process containment that would be much
> easier to use than a full-blown chroot, and in some ways more powerful.
I think that this functionality should be provided by "auxiliary verb"
wrapper commands, not welded into init.
Ian.
Reply to: