This article explains the security features of systemd that make chroot superflu... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

cyberax 4 months ago | parent | context | favorite | on: Why systemd is a problem for embedded Linux

This article explains the security features of systemd that make chroot superfluous: https://www.redhat.com/en/blog/mastering-systemd

And here's an example of how a network service can be confined in its own network namespace: https://www.cloudnull.io/2019/04/running-services-in-network... - with zero shell needed, btw.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact