SYSTEMD-RESOLVED COULD BE MADE TO CRASH OR RUN PROGRAMS IF IT RECEIVED A SPECIALLY CRAFTED DNS RESPONSE.
AN OUT-OF-BOUNDS WRITE WAS DISCOVERED IN SYSTEMD-RESOLVED WHEN HANDLING SPECIALLY CRAFTED DNS RESPONSES. A REMOTE ATTACKER COULD POTENTIALLY EXPLOIT THIS TO CAUSE A DENIAL OF SERVICE (DAEMON CRASH) OR EXECUTE ARBITRARY CODE.
ANYONE WITHIN A LAN OR FROM THE INTERNET TO AN INTERNET CONNECTED SYSTEM CAN SEND A DNS PACKET TO TAKE OVER A SYSTEM THAT IS RUNNING SYSTEMD.
>patches >actually fixing bugs maybe this is why hes angry
Landon Parker
How do you disable resolved?
Joseph Nguyen
Yeah, who cares. It's just an RCE in the base system for months.
Michael Mitchell
>kernel has a bug >people apt-get upgrade, grumble a bit about having to reboot, and go on with their lives >systemd has a bug >THIS IS A FUCKING BOTNET COMPROMISED BY THE NSA ITS DESTROYING LINUX FUCK FUCK FUCK REEEEEEE
Evan Diaz
everyone takes remote exploits in the kernel seriously
Joseph Sullivan
As if there was no RCE in the history of Linux
Jayden Wright
there have been nuclear disasters in the past too
Joseph James
>people still surprised when poettering fucks up
Josiah Allen
What about the uptimes, user? WHAT ABOUT MY FUCKING UPTIMES REEEEEEEEEE
Brayden Kelly
Install CloverOS dude.
Cooper Campbell
It's perfc.dat.
Jason Foster
Works on my machine.
Charles Gray
>using systemd-resolved lmao faggots that cant into resolv.conf
>not having kernelcare or ksplice for in-place kernel upgrades
>systemd is now the kernel
Adrian Brooks
hey Poettering!
Lincoln Sanders
I want to install Arch Linux on my new laptop, are there any good Systemd alternatives?
Ethan Watson
There are alternatives, but I wouldn't describe any of them as "good". There's a reason that systemd exists at all, its because there's big benefits to having an active supervising init system that tracks services and processes instead of a system that just runs some shell scripts and trusts that things work.
Julian Moore
we had process supervision for ages
Cooper Rodriguez
>wants to install Arch >doesn't want systemd Did you ingest a lot of lead as a kid?
Samuel Butler
yeah but systemd grows too fast and tries to do too much
it was just a matter of time before something went wrong
Carson Jenkins
Given a pid, can SysV tell me what service it belongs to? Given a service, can SysV tell me what processes belong to it? Can it do this even for daemons that don't cooperate and go out of their way to tell the init system what they're doing?
Jason Martinez
Why should sysv do that? What do we have daemontools for?
Christian Reed
daemontools is some good shit.
Evan Parker
>>Why should sysv do that? Because it's a useful troubleshooting and management tool? Because it makes things like conditional restarts work properly? >What do we have daemontools for? For grafting exactly this kind of useful functionality onto the back of SysV in a hacky and incomplete way?
Mason Flores
>builds perfectly on top of the existing eco system >easy to configure, maintain, replace sure is hacky
Gavin Gray
System-d is litterally the lowest level software that actually runs on your computer. You are giving some unknown piece of code the keys to your 1000$ rig. System-d is shit, we should boycot this shit
Justin Murphy
What privileges does resolved have?
Owen Gomez
>Wants to use Arch >Don't want to use systemd Hey, if you want something like Slackware, well just install Slackware.
Fucking retard.
Mason Thompson
Kys frunkgface go eara dilodo sandwich faggit cuck gay cuntttt
Julian Flores
install parabola
Nathaniel Carter
fuck off frogposter
Bentley Turner
Unironicly, install gentoo: can build up a custom linux without systemd.
Slackware, void, crux, antix and PClinuxOS are some others. And LFS if you know what you are doing and have the time.
Andrew Lopez
>Lepra that fappening was disappointing. she does have a nice pussy and asshole
Cameron Lee
>A SPECIALLY CRAFTED DNS RESPONSE
DNS IS A FUCKING BOTNET
Justin Perez
Works flawlessly on my machine, AND i have legacy hardware.
Robert Cooper
Devuan is SysV
Caleb Parker
i think the bigger question is why do we even use DNS anymore when there are at least a handful of better and more secure ways to identify clients?
David Harris
I use systemd for many programs I need to run 24/7 instead of using tmux. Fuck off
James Gomez
What about you go fuck yourslef in some shit tier bumhole like dharavi senpai?
Eli Myers
I am running alpine os with openrc Feels good man
Ian Adams
how else to resolve ip addresses?
Austin Thomas
Imma running out og mmf .luck about shitopodting frim my phone will be bznned soon (i home fick you mods,) FUCK NIGGERS
Bentley Rodriguez
booblet
Luke Morris
What?!?
Isaiah Myers
>ip addresses >necessary
yet again like DNS, there is a plethora of better choices that are just as unique and far more secure.
Colton Wright
Frick you
Lucas Myers
It's not unknown, but definitely more dangerous than init scripts and more obscure than the kernel. Its also mostly controlled by Red Shat.
Alexander Russell
What does that mean? I don't understand what you are trying to say.
Blake Gutierrez
why would you have a dns port open on a computer that is not a dns server?
Daniel Torres
I'm trying to say that I'm drunk af Mein Shaft is kinda red too
Evan Cox
How do I remove all the malicious crap from systemd?
Dominic Thompson
good thing that my home server does not have systemd and all resolvable addresses are in the hosts file.
Chase Williams
The problem is there is no good reason to have a potential attack surface the width that System-D has. A system needs a kernel, there is no getting around that, so a lot of work goes in to vetting it. System-D on the other hand haven't exactly had the best track record.
Logan Young
remove systemd.
Zachary Bell
Why did I install it in the first place
Charles Foster
This wouldn't have happened if systemd was written in Rust. Rust was literally made to avoid these kinds of bugs. Had Poettering used Rust, we wouldn't be here today. It is impossible for such a thing to occur in an application written in Rust. T̞̭̹̬͙h̜̝̗̯̥e͓re̯̝̙͉̬͓͕ ̱̼͉i̤͍̣̞s͚̹̖̩͓̘̱ ̳͇̻̫̥̙n̖̦o̞̤ ͉ͅv̹̭̺͕ḁ̮͈̗̞l͚͕ị̘̦̭͎d ̝̩͉a͇̜̞̘̭͔ͅr͚͇g̹̪̘̞̻̹u͚̤̰͎̭m͕̹e̺̺͚̫̝̞̻n̮̟̦̠͓t̮̞̬͇̣̻͚ ̹͙̦͙̘ͅa̯g̱̩̘̣a̩͓̳̟̯̯inͅs̹̮̬̟t͎̫͈̟͚ͅ ̝̰̗̯̪͉u̺̙̯͍̬͓͎s͔̜͍̼in̝̙̱̮̻g̰̞̼̪ Rṵ̠̟͔s̗̩̰t͚̠͇͓̖. P̘͍u̬̹̱̼͖t͇̠̤̦t̬̤͇̮̘͇̤i̘̣̣̪n̫̬̼̼͙̟̗͍g̤͉̳̮ͅ ͉͉͔̪̠s̠̟̖̩̰ͅa̳̺̱͕̠̙̙l̟̰͓̳̭͚̼t̪ ̝a͙̱̗̜̹n͇̱͚̣̞̙̤̤d̜̰̣ ̪̟͈̳͕̣̩̣w͉͇͔ḁ̮t͙̝e͙̜̖r̠̣͕̬͙ͅ ̹̣̼o̯̗̜̞̘̯̯͉n̰͔̳̺̟͓̙͎ ͓̘̭m̞̤̼̖̹̦̩e͖̬͓͓̞͖̱t͉̮̜͓͇̘a̘͕̙̦̳̭l̳̮͉͖̮̙ ̦̠̫c̘̖r͉̭̩̜̘e͖̮͙̖͔̞a̗̗͍͕̮t̻̹͔̱ͅe͈̪͇̱s̻̘̘ ͔R̙̳͍̦͇̖̻u͚͕̪̭̝̫s̹̦̖̬̰̘t̰,̦̩͇̳̻̫ͅ ̭͈͖̱̭͙͈̭s͇̻̭̹o͇̞̣̟̮ͅ ̭̭̣̯̻̣͍̯ͅw̺̹̥h͉̖̦͙͓͕y͍̬̯̝ ̞̯̗̖͖̟͉̠c̮͈̖̱̝̝̗̬o̘̼̟̬͓u̖̬̗l͖̬̮̣͇d̬͔̙̮̼n̼̘͙̤͉'͔̼̭ț̬̮̻̘̬͇ ͚̙h͈̱̫e̦̣͙̠̜͖̝ ͓͕̠h͔͈̬͇̩͙͈a̫͖v͈̰͎̞e̯̼̜͖̙ ͉̖j̹̫̭̙̣͉̬͉u̳̖͕s̙̹̺̜t̬ ͈̞d̟̫̤̪o̖̝͎̟̺̫͇̮ṉ͖e͍̭̙͕͙̠̤̠̫ ̰̠̖̱̜̤̺t̬̤̙̼̦̳̞̩h̬̻͎̙͙͓a̝͚̼͉͓̼̥̙̹t͖̝̮̖͙?
Jordan Young
So, what are the benefits of systemd over alternatives?
Tyler Scott
openrc
Bentley Rivera
because redhat wanted its own linux version of "it just werkz XD"
Isaiah Nelson
Arch-OpenRC literally the first google result you're a fucking moron nigger
Ian Walker
>reboot k-patch.
Caleb Perez
You do realize this has already been patched, right? ubuntu.com/usn/usn-3341-1/ > The problem can be corrected by updating your system to the following package version: Ubuntu 17.04: systemd 232-21ubuntu5 Ubuntu 16.10: systemd 231-9ubuntu5
Levi White
>no answer...
Thomas Bennett
Easier service management.
Brandon Cox
This could have been avoided if systemd was written in rust.
Nathan Martin
My Apple 15-inch MacBook Pro with TouchBar 256GB - Space Grey doesn't have this problem
Hudson Powell
>tfw we could have had LaunchD on Linux instead of this SystemDick
Matthew Brown
bump
Jaxon Foster
Devuan is OK?
Wyatt Campbell
systemd is already an incredibly scrutinized piece of software, with some absolutely fucking stupid design decisions so it having bugs BECAUSE of those fucking stupid design decisions it's completely acceptable that people are upset.
redhat was a fucking mistake
Ethan Sanders
what's with the rust shills being out in full force, articles and papers are reaching critical mass on this fucking thing