Re: Embarrassing security bug in systemd

To: debian-user@lists.debian.org
Subject: Re: Embarrassing security bug in systemd
From: Brian <ad44@cityscape.co.uk>
Date: Fri, 8 Dec 2017 19:57:03 +0000
Message-id: <[🔎] 08122017194852.99a70259a38c@desktop.copernicus.org.uk>
In-reply-to: <[🔎] 20171208192641.GB13298@chew>
References: <[🔎] ygfindj7cdq.fsf@tehran.isnogud.escape.de> <[🔎] 1e935ca6-ea43-7840-7623-0849b6606ac4@transient.nz> <[🔎] 20171207090344.GS3654@sherohman.org> <[🔎] 20171207143725.puek2berc2rjn2kl@camaguey.connexer.com> <[🔎] 8430b277-3757-8261-0e1e-23e274a0b49a@debian.org> <[🔎] p0dsbk$mn8$2@blaine.gmane.org> <[🔎] 1512747814.22891.12.camel@debian.org> <[🔎] 87zi6txfb1.fsf@genie.metacom.gr> <[🔎] 20171208192641.GB13298@chew>

On Fri 08 Dec 2017 at 19:26:41 +0000, Jonathan Dowland wrote:

> On Fri, Dec 08, 2017 at 07:09:06PM +0100, Menelaos Maglis wrote:
> > > > > Basically, it was a completely inconsistent mess before systemd.
> > > > > Now you at least have a central place where you can configure your
> > > > > system behaviour.
> > > In the past, we had *no consistency*: inittab had one thing, display
> > > managers another, ACPI scripts another...if you wanted a specific
> > > policy, you had to change three or more separate systems.
> > > 
> > > Along came [a new system] which provided a single place to define a
> > > consistent policy.
> > 
> > systemd provides a single place to define a consistent policy, provided
> > your system uses systemd.
> 
> That's a good point.

Not really. systemd doesn't stop providing a single place to define a
consistent policy because a set of users do not use it.
> 
> > Debian GNU/Linux offers alternative init systems, which people choose
> > and use. They have their, often different, "default" settings.
> 
> It would perhaps be a good idea for the policy to be determined in an
> init-agnostic way.o
> 
> > In anycase, it should be a documented configuration option to allow
> > for alternative use cases.
> 
> No objection there, and I agree that the release notes should probably
> have covered the policy changes. That ship has now sailed unfortunately.

A bug report against the release notes with a patch is always worth a
try.

-- 
Brian.

Reply to:

Follow-Ups:
- Re: Embarrassing security bug in systemd
  - From: Jonathan Dowland <jmtd@debian.org>

References:
- Embarrassing security bug in systemd
  - From: Urs Thuermann <urs@isnogud.escape.de>
- Re: Embarrassing security bug in systemd
  - From: Ben Caradoc-Davies <ben@transient.nz>
- Re: Embarrassing security bug in systemd
  - From: Dave Sherohman <dave@sherohman.org>
- Re: Embarrassing security bug in systemd
  - From: Roberto C. Sánchez <roberto@debian.org>
- Re: Embarrassing security bug in systemd
  - From: Michael Biebl <biebl@debian.org>
- Re: Embarrassing security bug in systemd
  - From: deloptes <deloptes@gmail.com>
- Re: Embarrassing security bug in systemd
  - From: Jonathan Dowland <jmtd@debian.org>
- Re: Embarrassing security bug in systemd
  - From: Menelaos Maglis <mmaglis@metacom.gr>
- Re: Embarrassing security bug in systemd
  - From: Jonathan Dowland <jmtd@debian.org>

Prev by Date: Re: MATE Search Tool -- forcing a default search path
Next by Date: Re: Embarrassing security bug in systemd
Previous by thread: Re: Embarrassing security bug in systemd
Next by thread: Re: Embarrassing security bug in systemd
Index(es):
- Date
- Thread