> * systemd has overall good built-in security!
I vividly remember how Pottering closed a root exploit issue as "not a bug", so no.
> You claim systemd is a "badly written multifunction blob" but that's mostly not true,
> look at `/usr/lib/systemd/systemd-` and `/usr/bin/systemd-`. Systemd is split out into
> multiple purpose-specific executables in almost every place where it makes sense to do
> it.
None of those executables can be used without installing the whole systemd, so that argument is flawed.
> * systemd has overall good built-in security!
I vividly remember how Pottering closed a root exploit issue as "not a bug", so no.
> You claim systemd is a "badly written multifunction blob" but that's mostly not true,
> look at `/usr/lib/systemd/systemd-` and `/usr/bin/systemd-`. Systemd is split out into
> multiple purpose-specific executables in almost every place where it makes sense to do
> it.
None of those executables can be used without installing the whole systemd, so that argument is flawed.