From 091df2ad2264f7bc8a6cb8695a6fb982a4dc8407 Mon Sep 17 00:00:00 2001 From: inference Date: Thu, 22 Jun 2023 21:21:47 +0100 Subject: [PATCH] Reorder HTML link formatting. --- blog/systemd_insecurity.html | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/blog/systemd_insecurity.html b/blog/systemd_insecurity.html index 2d2d887..7543449 100644 --- a/blog/systemd_insecurity.html +++ b/blog/systemd_insecurity.html @@ -5,7 +5,7 @@ - + @@ -48,7 +48,7 @@

My thoughts:
Yes, if they're security-related.

Source:
- systemd GitHub Issue 5998

+ systemd GitHub Issue 5998

Issue #1 - CVEs Are Not Useful

"Humpf, I am not convinced this is the right way to announce this. We never did that, and half the CVEs aren't useful anyway, hence I am not sure we should start with that now, because it is either @@ -60,13 +60,13 @@ it *is* the correct way to announce it. It seems as if over 95 security-concious people think the same.

Source:
- systemd GitHub Issue 6225

+ systemd GitHub Issue 6225

Issue #2 - Security is a Circus

"I am not sure I buy enough into the security circus to do that though for any minor issue..."

- Lennart Poettering, systemd lead developer

Source:
- systemd GitHub Issue 5144

+ systemd GitHub Issue 5144

Issue #3 - Blaming the User

"Yes, as you found out "0day" is not a valid username. I wonder which tool permitted you to create it in the first place. Note that not permitting numeric first characters is done on purpose: to @@ -83,6 +83,6 @@ systemd was the thing that allowed root access just because a username started with a number, then Poettering blamed the user.

Source:
- systemd GitHub Issue 6237

+ systemd GitHub Issue 6237