Slashdot Mirror

← Back to Stories (view on slashdot.org)

Vulnerability Discovered In Latest Ubuntu Distributions, Users Advised To Update (ubuntu.com)

Posted by msmash on from the go-update dept.

Celarent Darii writes: There is a vulnerability in the latest ubuntu distributions due to the DNS resolver included in systemd. The inclusion of the dns resolver was lamented by many on the mailing list, not without cause. All are advised to update their distribution.

7 of 159 comments (clear)

  1. Poettering strikes again by guruevi · · Score: 5, Funny

    I think systemd is a Microsoft plant. It's basically INI files for Linux. Next week he'll upgrade us all to a 'central registry' and you'll need a GUI to edit it.

    --
    Custom electronics and digital signage for your business: www.evcircuits.com
  2. Re:I'm amazed! by Type44Q · · Score: 4, Informative

    SystemD's OS is the Intel Management Engine.

  3. Dare I say it? by DontBeAMoran · · Score: 5, Insightful

    Here goes: systemd, the cause of all modern Linux problems.

    systemd is completely backward in how unix systems are built. You're supposed to have tiny programs do one job and do it well. systemd is a huge monolith that's assimilating everything on its path.

    Wait, why does that sound familiar?

    Anyone know if the authors of systemd are getting paid by Microsoft, by any chance?

    --
    #DeleteFacebook
    1. Re:Dare I say it? by Kjella · · Score: 4, Informative

      I'm not saying that systemd is the answer, but... the old init system worked great if all you ever needed was an init system. That is to say your machine got everything plugged in on boot, always on a wired network and always on AC. The only thing you need the init system for was to get you from cold hardware to a running state, then it could declare "my work here is done" and go into retirement until it was time for shutdown. For some people that's all they need, good for you. Anything dynamic has been a mess. Suspend/resume/hibernate, hot-plugging/unplugging, wired/wireless, connected/not connected to network, AC/battery, power management, docked/undocked, switchable graphics, the list goes on and on.

      The track record is not much better when it comes to shared resources like window managers, composited desktops, sound cards etc. that need some kind of mediator like a compositor or sound server. You can of course say that every application should solve this on their own, but the truth is that we know they don't and there's a huge patchwork of solutions that try to make applications play nice, often competing so this application will only work with that system-level service. I can understand that you don't want to support two init systems (SysV, systemd), four sound servers (PulseAudio, ALSA, Jack, OSS), two window managers (X11, Wayland) and so on.

      For this you want a modern POSIX, call it an "application execution environment" if you will. A running mediator between the applications and their surroundings, not just at boot but as long as the machine has power. Maybe this could be solved by a hundred small services of various kinds or at least that's its a better solution than one gigantic mess. But to pretend it's all working great is something of an exaggeration, to say the least.

      --
      Live today, because you never know what tomorrow brings
    2. Re:Dare I say it? by chihowa · · Score: 4, Insightful

      The problem with systemd is the half-assed assimilation of more and more system functions.

      • Why does systemd even have its own DNS resolver?
      • How many people are working on it and reviewing the code for security issues?
      • Why was the whole thing rewritten from scratch instead of just writing a shim for the previously used, reviewed, secure resolvers that exist?

      It's not just DNS resolvers, either. I've had issues with systemd's own (very incomplete) SNTP client, which is used instead of more mature and robust clients. Why do they keep reinventing the wheel in such a sloppy way?

      --
      If you want a vision of the future, imagine a youtube comments section scrolling - forever.
  4. Re:what a horrible dns resolver by aardvarkjoe · · Score: 5, Insightful

    What problem do the systemd guys think that they're solving by adding a half-assed dns resolver to systemd? Is it just because they can't stand to have any software that's not under their direct control?

    --

    How can we continue to believe in a just universe and freedom to eat crackers if we have no ale?
  5. Re:For those keeping track... by Gravis+Zero · · Score: 5, Interesting

    That graph is the infant graph of every project

    Sure... except that systemd has been around for seven years. It's not maturing because it's always expanding.

    They need help.

    I agree, they are rudderless boat that runs into other projects and absorbs them. What they need is vision but the project leaders are blind mice in a maze with no finish line. I cannot help them because they will not accept one of their ideas being rejected.

    What are YOU doing to help them? There's 617 things you could be working on.

    I've been writing a properly designed replacement to dislodge systemd. It's portable, superior but most importantly it follows the UNIX design philosophy. However, I will not be an enabler of those who work on systemd by cleaning up their messes for the next 30 years.

    Open source software is evolutionary and systemd too will go the way of the dinosaurs.

    --
    Anons need not reply. Questions end with a question mark.