systemd isn't safe to run anywhere

submitted by [deleted] from unixsheikh.com

all 3 comments
sorted by:
top
newinsightfulfun

[–][deleted] 5 insightful - 1 fun5 insightful - 0 fun6 insightful - 1 fun -  (2 children)

This criticism of systemd also applies to the Linux kernel itself. It is a monolithic block where pieces of code written in Communist China run along or even above security critical code.

If you want to get really black pilled, consider that the kernel is built on mud to begin with.

In the past, they had to disable several compiler "optimizations" that were optimizing away their sanity checks. Are they disabling one too few?

And the deeper you go, the runnier it gets, if you are not careful, the CPU cache side-channel leaks your whole memory layout to a goddamn javascript program.

[–][deleted] 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (1 child)

How do the BSD's compare in this department?

[–][deleted] 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (0 children)

For the kernel? Basically they all use the same monolithic design. Any protection from bad agents is mostly cultural. If you link ccpspy.o to the kernel they all fail.

The userland does tend to be more UNIX-like, though.

CPU and compiler issues are unavoidable as there are no real choices. It’s all speculative performance-driven nonsense for commercial CPUs and there are only two viable compilers that aggressively and silently optimize code with no specified behavior other than what’s written in the standard.