Bug#947847: opentmpfiles & opensysusers, and its use in the Debian policy

Moritz Mühlenhoff jmm at inutil.org
Fri Jan 3 22:23:10 GMT 2020


Thomas Goirand wrote:
> Second, it looks like are you saying that only systemd is able to
> implement new things. I don't believe that's the case. For example,
> upstream in open{sysusers,tmpfiles} could decide to implement a new
> feature, or even *us*, on the Debian side of things, could do that. This
> would be especially easy with open{sysusers,tmpfiles} because they are
> easy to understand shell scripts.

systemd-tmpfiles solves a number of simple looking, yet really complex
tasks. There's no way an "easy to understand" shell script implementation
will avoid issues like CVE-2018-6954.

Cheers,
        Moritz





More information about the Pkg-systemd-maintainers mailing list