The poisoned NUL byte, 2014 edition (Project Zero)

Posted Aug 28, 2014 12:54 UTC (Thu) by anselm (subscriber, #2796)
In reply to: The poisoned NUL byte, 2014 edition (Project Zero) by jb.1234abcd
Parent article: The poisoned NUL byte, 2014 edition (Project Zero)

Tasks being worked on are support for a local DNS cache, mDNS responder, LLMNR responder, DNSSEC verification, IPC support in the kernel (KDBUS), time synchronization with NTP, better integration with containers, and many other services.

Sounds great to me.

Well, I remember also that he assured everybody that the UNIX/Linux bazaar development model will be respected in the future.

At this point two things are probably worth mentioning:

Contrary to popular belief, Lennart Poettering is not the sole developer of systemd. In fact there is now a fairly large and active development community around it, including people affiliated with many different Linux distributions. This helps ensure, at least, that systemd represents a consensus that most Linux distributors can live with, rather than the foibles of one single person. (Incidentally, nobody seems to mind that Linus Torvalds is still in charge of Linux.)
Also contrary to popular belief, systemd is not a single huge monolithic take-it-or-leave-it thing. It is good to see people working on standardised solutions for various problems within the Linux sphere under the systemd umbrella, because such solutions have a very good chance of actually becoming part of most Linux systems by way of the mainstream distributions incorporating systemd. For example, it would be very useful indeed to have a widely deployed DNS resolver that can verify DNSSEC, which right now distributions do not tend to offer by default. If in the future the verifying DNS resolver within systemd is not to people's liking, they will be able to either improve it or else replace it with another resolver that they like better, but whatever systemd comes with is likely to be at least a baseline implementation that will get the functionality into the hands of most Linux users without the need for them to sort this out themselves.