Originally posted by rtfazeberdee
View Post
Announcement
Collapse
No announcement yet.
Systemd 251-rc1 Released With Experimental systemd-sysupdate Tool
Collapse
X
-
Originally posted by khanich View PostCan we name systemd at this point just straight up "system management suite" instead of naming every job it does individually?
Otherwise if you want to rename the whole thing then I think "Linux userland base" is a good description.
- Likes 2
Comment
-
Originally posted by pWe00Iri3e7Z9lHOX2Qx View Post
LOL. How does supporting A/B updates increase the chance of a data breach? This is probably for projects like Red Hat Automotive, or did you think they planned to do a YOLO DNF upgrade on infotainment units in cars? This is useful in tons of places instead of rolling your own seamless updates like the Steamdeck had to.² Hell, this would be far better for low maintenance systems for elderly relatives. Reliable updates/boots are kind of important.
where a is malicious
and b is the non malicious version that is built from source.
Sounds like npm modules for root system init.Last edited by mSparks; 01 April 2022, 02:07 AM.
Comment
-
Originally posted by mSparks View Post
"automatic discovery and installation of a/b updates"
where a is malicious
and b is the non malicious version that is built from source.
Comment
-
Originally posted by jacob View Post
Nah, it's a good name. Rather they should just rename the service manager component "systemd-pid1" to put an end to the trolls' deliberate FUD.
Otherwise if you want to rename the whole thing then I think "Linux userland base" is a good description.
It's a lot more than that and naming every single thing would be annoying.
Comment
-
Originally posted by Jabberwocky View Post
This is really cool! I must have missed it.
Makes sense for that to happen, seems like a step in the right direction IMO.
- Likes 1
Comment
-
Originally posted by RahulSundaram View Post
If you bothered to read the details at all, you would know that it is not possible to take a random malicious source and push that as an automatic update. Verity integrity data partition images are used here. If you don't know what that means, I would start with reading https://source.android.com/security/...boot/dm-verity. It is the same security mechanism used by millions of systems already.
Couple that with the dubious proficiency of systemd developers over the years and it screams "bad idea".
But then they went all in with A/B deployment, which is nothing if not a perfect method of masking a compromise.
Why all that risk? dont know, reasons I guess.
Comment
Comment