• 1

if NetworkManager can be hacked, so can systemd

It seems to me that for this to be effective the control has to happen at a lower level. Systemd asking the kernel is a security risk.

Is this feasible ?, could Systemd be forced to take the selinux identity of the caller ? (this way, each Systemd service can be relabeled with the correct label)

jam

  • 1
?

Log in