Originally posted by hreindl
View Post
Most of systemd doesn't qualify for that, because it's available to all processes (it's a service / daemon) and so can be exploited by untrusted apps. It's not like a library or an app that other apps don't have access to. So sandboxing it is good.
However, I do not hate systemd because it's sandboxed, if you got the wrong idea. Pretty sure I explained a million times at least why I find it bad, sandboxing wasn't one of them.
Leave a comment: