Lennart Poettering
Lennart Poettering
> Yes dm-verity is slow, but it's slow regardless, if one picks it they have to deal with it already. Having a security mechanism that can be trivially bypassed means...
> Having a security mechanism that can be trivially bypassed means having no security mechanism at all. and how would you "trivially bypass" the check btw? i really don't follow?
> /usr/ is not any different than /var/ or any other hierarchy. It's writable storage, that anything with write access can drop what they want in. So it doesn't make...
hmm, interesting. so recetnly the kernel acquired the functionality to set the hostname via a kernel cmdline option: See https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5a704629f2c1ba33bbb444cb18e6957e97c76e8f In light of that, I think it makes little sense...
please always rebase on whatever is current main, and force push
but yes, the priorities you proposed look good to me. we probably should put something like this somewhere in the docs, i.e. the systemd-hostnamed man page. frickin complex hierarchy ;-(
thinking about it i think 3.i and 3.ii should be swapped in yoour list above?
would love @keszybz's input before we merge this, but from my side I tink we should merge it as is
> It's great that we're carefully considering the precedence here. I fully agree with making `systemd.hostname=` behave similarly to `/etc/hostname`. > > But I don't understand why `hostname=` is used...