Arguments against systemd

From Without Systemd
(Difference between revisions)
Jump to: navigation, search
(Scope creep leads to vulnerabilities)
(Absurd bugs and responses)
Line 68: Line 68:
 
* [http://www.phoronix.com/scan.php?page=news_item&px=Systemd-Mount systemd assimilates mount]<br>
 
* [http://www.phoronix.com/scan.php?page=news_item&px=Systemd-Mount systemd assimilates mount]<br>
 
[[File:Systemd_anigif.gif]]<br><br>[[File:Systemd_scopecreep_chart.png]]<br><br>
 
[[File:Systemd_anigif.gif]]<br><br>[[File:Systemd_scopecreep_chart.png]]<br><br>
  +
  +
== Scope creep leads to vulnerabilities ==
  +
  +
* [http://seclists.org/oss-sec/2014/q4/592 systemd-resolved DNS cache poisoning]
  +
* To run systemd properly in container a FUSE [https://linuxcontainers.org/lxcfs/introduction/ LXCFS] had to be created, and surely its own share of vulnerabilities:
  +
** [https://www.cvedetails.com/cve/CVE-2015-1342/ LXCFS before 0.12 does not properly enforce directory escapes] CVSS 4.6
  +
** [https://www.cvedetails.com/cve/CVE-2015-1344/ The do_write_pids function in lxcfs.c in LXCFS before 0.12 does not properly check permissions] CVSS 7.2
  +
* [https://latesthackingnews.com/2017/06/29/a-systemd-vulnerability-allows-attackers-hack-linux-machines-via-malicious-dns-response/ systemd vulnerability allows attackers to hack Linux machines via malicious DNS response]<br>
   
 
== Absurd bugs and responses ==
 
== Absurd bugs and responses ==

Revision as of 20:18, 27 March 2018

Contents


Links

The new order.jpg

Conceptional problems

Debunking the myth of unit files being significantly shorter than scripts used by all other init systems: A side-by-side look at run scripts and service units

Poor design

Scope creep

Systemd anigif.gif

Systemd scopecreep chart.png

Scope creep leads to vulnerabilities

Absurd bugs and responses

Breaking promises and immaturity

"After udev is merged into the systemd tree you can still build it for usage outside of systemd systems, and we will support these builds officially. In fact, we will be supporting this for a long time"

"...this will effectively also mean that we will not support non-systemd systems with udev anymore starting at that point. Gentoo folks, this is your wakeup call."

Linux (kernel) coup attempt: "kdbus support is no longer compile-time optional ... We encourage all downstream distributions to begin testing kdbus by adding it to the kernel images in the development distributions, and leaving kdbus support in systemd enabled." comment on this on LKML

"The kdbuswreck"

"kdbus now out-of-tree"

"kdbus dropped in favor of BUS1"

unmet stability promises:

To quote from the systemd stability promise:

"Starting with version 26 (the first version released with Fedora 15) we promise to keep a number of them stable and compatible for the future."

One of their promises is for the export format:

"Entry metadata that is not actually a field is serialized like it was a field, but beginning with two underscores. "

This is not true for version 44 of systemd for example.

Ignorance of fundamental operating system concepts

Personal tools