Resources on #systemd as well as a lot of options that are de-systemD. As well as hardening #guides, #privacy and #security stuff too
https://start.me/p/Kg8keE/priv-sec
https://start.me/p/Kg8keE/priv-sec
Start.me
Priv/sec - Start.me
A startpage with online resources about Priv/sec, created by Start.me.
Lennart Poettering intends to replace "sudo" with #systemd's run0. Here's a quick PoC to demonstrate root permission hijacking by exploiting the fact "systemd-run" (the basis of uid0/run0, the sudo replacer) creates a user owned pty for communication with the new "root" process.
This isn't the only bug of course, it's not possible on Linux to read the environment of a root owned process but as systemd creates a service in the system slice, you can query D-BUS and learn sensitive information passed to the process env, such as API keys or other secrets.
https://fixupx.com/hackerfantastic/status/1785495587514638559
Nitter mirror: https://xcancel.com/hackerfantastic/status/1785495587514638559
This isn't the only bug of course, it's not possible on Linux to read the environment of a root owned process but as systemd creates a service in the system slice, you can query D-BUS and learn sensitive information passed to the process env, such as API keys or other secrets.
https://fixupx.com/hackerfantastic/status/1785495587514638559
Nitter mirror: https://xcancel.com/hackerfantastic/status/1785495587514638559
🧵 Thread • FxTwitter / FixupX
hackerfantastic.x (@hackerfantastic)
Lennart Poettering intends to replace "sudo" with systemd's run0. Here's a quick PoC to demonstrate root permission hijacking by exploiting the fact "systemd-run" (the basis of uid0/run0, the sudo replacer) creates a user owned pty for communication with…
Here are some links about #systemd #alternatives for#Linux in no particular order.
Which are your favorites?
https://suckless.org/sucks/systemd/
https://unixsheikh.com/articles/the-real-motivation-behind-systemd.html
https://sysdfree.wordpress.com/
https://nosystemd.org/
https://skarnet.org/software/systemd.html
https://the-world-after-systemd.ungleich.ch/
https://ewontfix.com/14/
https://forums.debian.net/viewtopic.php?t=120652
https://www.devuan.org/os/announce/
https://www.devuan.org/os/init-freedom
https://thehackernews.com/2019/01/linux-systemd-exploit.html
https://judecnelson.blogspot.com/2014/09/systemd-biggest-fallacies.html
https://chiefio.wordpress.com/2016/05/18/systemd-it-keeps-getting-worse/
https://systemd-free.artixlinux.org/why.php
Some more added here too: https://start.me/p/Kg8keE/priv-sec
#systemd #Linux
Which are your favorites?
https://suckless.org/sucks/systemd/
https://unixsheikh.com/articles/the-real-motivation-behind-systemd.html
https://sysdfree.wordpress.com/
https://nosystemd.org/
https://skarnet.org/software/systemd.html
https://the-world-after-systemd.ungleich.ch/
https://ewontfix.com/14/
https://forums.debian.net/viewtopic.php?t=120652
https://www.devuan.org/os/announce/
https://www.devuan.org/os/init-freedom
https://thehackernews.com/2019/01/linux-systemd-exploit.html
https://judecnelson.blogspot.com/2014/09/systemd-biggest-fallacies.html
https://chiefio.wordpress.com/2016/05/18/systemd-it-keeps-getting-worse/
https://systemd-free.artixlinux.org/why.php
Some more added here too: https://start.me/p/Kg8keE/priv-sec
#systemd #Linux
#Systemd Adding The Ability to Boot Directly Into A Disk Image Downloaded Via HTTP
https://www.phoronix.com/news/systemd-disk-image-boot-HTTP
#Linux #backdoor
https://www.phoronix.com/news/systemd-disk-image-boot-HTTP
#Linux #backdoor
Phoronix
Systemd Adding The Ability to Boot Directly Into A Disk Image Downloaded Via HTTP
Systemd lead developer Lennart Poettering has been working on adding the ability to let systemd boot directly into a disk image downloaded via HTTP within the initial RAM disk (initrd) during the Linux boot process.
A well written look at the pros and cons of #systemd
https://www.howtogeek.com/675569/why-linuxs-systemd-is-still-divisive-after-all-these-years/
@BonesTechGarage
https://www.howtogeek.com/675569/why-linuxs-systemd-is-still-divisive-after-all-these-years/
@BonesTechGarage
How-To Geek
Why Linux’s systemd Is Still Divisive After All These Years
systemd is 10 years old, but feelings about it in the Linux community haven’t mellowed—it’s as divisive now as it ever was. Although it’s used by many major Linux distributions, the hardcore opposition hasn’t relented.
#Movuan #PINE64
The Movuan project was started by community member lxb and announced in a forum post as an alternative to mobile distributions using the #systemd init system. Thanks to being forked from Mobian, the project makes use of modified Mobian debos to build it’s images.
One of the modifications that lxb makes is an optional script which can customize a Movuan image to install extra software like AndroidImpEx for importing contacts and sms messages from an Android phone, Ungoogled Chromium, local caching DNS (bind) tunnelled through TLS (stubby) to privacy minded servers and an inbuilt adblocker through a caching proxy (squid). These modifications are a personal preference of lxb’s but anyone is free to use them to help improve their privacy.
https://pine64.org/2025/08/27/august_2025_movuan/
The Movuan project was started by community member lxb and announced in a forum post as an alternative to mobile distributions using the #systemd init system. Thanks to being forked from Mobian, the project makes use of modified Mobian debos to build it’s images.
One of the modifications that lxb makes is an optional script which can customize a Movuan image to install extra software like AndroidImpEx for importing contacts and sms messages from an Android phone, Ungoogled Chromium, local caching DNS (bind) tunnelled through TLS (stubby) to privacy minded servers and an inbuilt adblocker through a caching proxy (squid). These modifications are a personal preference of lxb’s but anyone is free to use them to help improve their privacy.
https://pine64.org/2025/08/27/august_2025_movuan/
PINE64
Project Showcase: Movuan
A showcase of the Devuan based operating system for the PinePhone called Movuan.