Debian User Forums

keithpeter wrote:Debian was the last major distro to switch to systemd and is the only one that is preserving alternatives to my knowledge.

goulo wrote:

keithpeter wrote:Debian was the last major distro to switch to systemd and is the only one that is preserving alternatives to my knowledge.

Gentoo! (or maybe you're not considering it "major"?)

timbgo wrote:Allow me to tell you that on Gentoo, quite a number of people decided to go without those multiseat.
Uninstalling dbus and *kits (to Unfacilitate Remote Seats)
https://forums.gentoo.org/viewtopic-t-9 ... ight-.html
But we have a few developers there that openly care for the Fourth Amendment to the Constitution to the United States (such legislature is generally in all democratic countries' constitutions; for the less initiated in legalese, it's your right to privacy, secrecy, in your communications). Aarghh, this calls for a quote, and I can only promise I will try to be back to insert it here... wait...
Nope, haven't found the talk, but it's blueness, a Council Member https://wiki.gentoo.org/wiki/User:Blueness

3. We will not hide problems
We will keep our entire bug report database open for public view at
all times. Reports that people file online will promptly become
visible to others.

Poul-Heening Kamp wrote: ...So, this is our poster boy: the Debian random number generator.

This is really beautifully executed.

This is due to {ascend in a path} [a guess, is unintelligle], you know, this gets Valgrind to complain, and I can't see it does anything sensible. You should just remove it.

And they did.

So for two years all the Debians had lousy random numbers which made bruteforcing SSL and stuff, like that...: done.

You earned a pretty good bonus.

OpenSSL is the crown jewel.

OpenSSL is the standard library if you want crypto.

Getting SSL to work against all browsers and all that stuff without using OpenSSL is very very tricky.

Reading the OpenSSL manuals or source code, is not tricky, that's close to impossible.

And that's 300,000 lines of code, so good luck with that!

The documentation is deficient and misleading, and the defaults are deceptive. They don't do what you think they do.

This saves so much money in the collection, you have no idea.

So the overall status of the Operation Orchestra. It's a resounding success.

We spend less than a third of a percent of the NSA budget.

And it'd probably cost the collection cost by something like 50 %.

It's kept most of the Internet in plaitext, and it has never been exposed (in the press).

Edward Snowden has no papers on Orchestra at all.

...[snip]...

Julian Assange wrote: That's one of the amazing things about encryption, that somehow the Universe has permitted the type of mathematics, the type of physics which permits the resistance against unlimited coercive force: it doesn't matter how many soldiers, how many guns, how many nuclear weapons you have, if your encryption system is right, it can pass through the United States, it can effectively create a channel through a hostile country the way you can send, political... economic and political information, bringing two greater societies together, in this case Latin America and Europe.

BBC Click Online presenter wrote: Now, one of the big topics here is open source and I'm wondering whether the fact that you have an open system that everyone knows how it works would make encryption more secure than a closed system.

Julian Assange wrote: Oh, we know from experience that it does seem to be the case, that there's a vast number of closed source snake oil encryption systems being spread around.

Now we know that Open Source is not entirely a solution, e.g. there was an encryption bug in the Debian's version of the SSH in the Random Number Generator which existed for years, and that was all open source.

Now it was eventually found and revealed, and it was found and revealed also because it was open source.

But the way things are done now is through backdoors. So these are backdoors designed to look like bugs.

And, you know, what is the security of the programmers who are involved in some of these open sources. Can you, when they do, I say, update their code, can you plant what looks like a bug, even a typo, that carries through?

Or, say, look at a... a system like Debian, these units, the various kinds of unit systems, look at all the packages they include. look at the upstream libraries, dependencies upon dependencies upon dependencies, and all you need to do is compromise one of those dependencies and there's a flow through and {these are getting back} [a guess, is unintelligle].

Modern systems are assembleges of incredible intellectual content which is being developed all over the world over the past ten years by many different players.

But there's an age now [a guess, is unintelligle] in CPUs, there's few, you know maybe three different securities layers in these systems.

But when you pull together thousands of packages altogether, it's pretty hard to actually resist the security compromises that are engineered by nation states.

It doesn't mean it's not worth trying, increasing the cost of owning the world.

Rens Houben wrote: In other news for Wed, Sep 03, 2014 at 11:11:30AM +0200, Svante Signell has been seen typing:

Svante Signell wrote: Some food for thought about systemd:

... I thought we'd all agreed to stop bringing up tired arguments that
nobody but the "systemd MUST DIE" crowd really wants to hear anymore.

Svante Signell wrote: You might have seen this http://ewontfix.com/14
but have you seen this http://ewontfix.com/15
or this http://boycottsystemd.org/

"Open source Tea Party". That explains *so* much...

Rens Houben wrote:

Svante Signell wrote: Having a systemd-free option for Debian Jessie is becoming more and more
important. Otherwise (Debian) users might do as recommended in the third
link: Boycott distros that use systemd.

"If we keep systemd, people who want to boycott systemd will boycott
us." Seriously, can we stop with the circular arguments as well?

Rens Houben wrote: On Mittwoch, 3. September 2014, Svante Signell wrote:

Svante Signell wrote: Some food for thought about systemd:
You might have seen this http://ewontfix.com/14
but have you seen this http://ewontfix.com/15
or this http://boycottsystemd.org/

Having a systemd-free option for Debian Jessie is becoming more and more
important. Otherwise (Debian) users might do as recommended in the third
link: Boycott distros that use systemd.

debian-devel@ is for the development of the Debian distribution, not for
ranting. Please take your rants elsewhere. It's tiring and a waste of your and
many other peoples time. But it wont change things. Code changes things in
Debian.

Marco d'Itri wrote: On Sep 03, Svante Signell wrote:

Svante Signell wrote: Having a systemd-free option for Debian Jessie is becoming more and more
important. Otherwise (Debian) users might do as recommended in the third
link: Boycott distros that use systemd.

And I strongly encourage them to do this: we aim to be universal but we
cannot reasonably fit everybody's needs.

https://qa.debian.org/popcon-graph.php? ... beenhere=1

Steve Langasek wrote:

Marco d'Itri wrote: And I strongly encourage them to do this: we aim to be universal but we
cannot reasonably fit everybody's needs.

< link given above, not duplicated here >

Please stop using graphs showing how various teams have forced systemd onto
users' systems as if it is somehow a democratic endorsement of the outcome.

Code: Select all

Steve Langasek                   Give me a lever long enough and a Free OS
Debian Developer                   to set it on, and I can move the world.
Ubuntu Developer                                    http://www.debian.org/
slangasek at ubuntu dot com                       vorlon at debian dot org

Cameron Norman wrote: El mié, 3 de sep 2014 a las 4:07 , Marco d'Itri escribió:

Marco d'Itri wrote: On Sep 03, Steve Langasek wrote:

Steve Langasek wrote: >
https://qa.debian.org/popcon-graph.php? ... beenhere=1
< link repeated for clarity, although already given further above, and it is by Marco, but quoting allowed only 3 deep >

Please stop using graphs showing how various teams have forced systemd onto users' systems as if it is somehow a democratic endorsement of the outcome.

I am not sure about how the concept of democracy applies to this, but the graph clearly shows that nobody is being forced to do anything and indeed about 4000 users choose to install systemd-shim and to not use systemd.

Ok, let me explain Steve's POV. Many packages depended on libpam-systemd before systemd-shim was ever in the archive, leading to systemd-sysv being installed by a normal dist-upgrade on Sid (and, although I am not sure, testing). The alternative was often to have GNOME or Network Manager removed, two very popular packages (and the latter quite important). Even after systemd-shim was uploaded to the archive (still at logind v204 here), libpam-systemd depended on "systemd-sysv | systemd-shim". This meant that users' systems would switch init systems on a normal dist-upgrade *unless* they manually intervened and knew which package they had to install to avoid that. Finally, systemd v208 was uploaded to unstable with an unconditional dependency on systemd-sysv. All of these actions led to users experiencing a change of init system before they had taken action to change init systems, which means that the graphs are not reliable in claiming that the majority of users wanted systemd as their init system.

I can not speak for Steve, but I recognize that some or all of those actions above were called for. The final one especially (systemd v208 upload), since their was ample warning and communication (something like one or two months I think), the move was a long time coming, and systemd was chosen as the default init system by then (not true for the other two actions).

I hope that helps you understand how the graph does not depict how many users elected to use systemd as their init system.

Best regards,
--
Cameron Norman

Noel Torres wrote: On Wednesday, 3 de September de 2014 16:21:31 Svante Signell escribió:

Svante Signell wrote: [...]
should be allowed, and I'm trying to find out how many of debian users
and developers are interested in working together with me on such a
solution. Best would be to have an option in the installer (hidden by
[...]

I volunteer to test this, not for contributing (I am not a programmer), for a very simple reason: I do not want my long-running servers (and those of my clients) to be rebooted for something that should be so simple as upgrading a service or applying some non-kernel security patch.

I may have (I agree I have) some conservative thinking. I've been well against network-manager messing my interfaces

and I'm against systemd as well, but I really think the Unix way, when properly implemented, is the way to go. And if it does not work, make it work instead of building a dinosaur and force dependencies into it (and yes, I'm pointing at you, Gnome Debian packagers, both for network-manager and systemd).

In resume: count on me to test and check and report bugs and triage.

/tmp wrote:So, would this situation be a legitimate reason to fork Debian GNU/Linux using sysvinit?

I love Debian GNU/Linux but if this keeps up I'm switching to FreeBSD.

Margarita Manterola wrote: ...[snip]...
cinnamon is now fully available in testing.
...[snip]...

Adam Borowski wrote: On Thu, Sep 04, 2014 at 02:57:16PM +0200, Margarita Manterola wrote:

Margarita Manterola wrote: On Thu, Sep 4, 2014 at 9:43 AM, envite <envite at rolamasao dot org> wrote:

Adam Borowski wrote: Does this Cinnamon for Debian include systemd ?

Yes, for Linux it includes systemd. For kFreeBSD it should be able to
work without systemd, but some packages haven't compiled yet due to
missing dependencies.

If Cinnamon can work without systemd, why is it a hard dependency?

Cameron Norman wrote: TL;DR `sudo apt-get install systemd-shim`

You are mistaken, it is not. What I suspect happened is that something
depended on logind (libpam-systemd) and libpam-systemd depends on
"systemd-sysv | systemd-shim". This means that systems will have their
init system switched even if unneeded unless they predict the issue or
track down the dependency tree, then learn they have to install
systemd-shim (which does not exist on Wheezy, so you will have to
install systemd-sysv then another init after the upgrade). This bug
has been reported and marked as WONTFIX for reasons that have not been
fully explained (it is claimed people with init=/lib/systemd/systemd
in their kcmdline will experience breakage due to systemd-shim
conflicting with systemd-sysv, however this is actually not likely at
all according to the shim maintainer).

boycottsystemd.org wrote: Disclaimer: We are not sysvinit purists by any means. We do recognize the need for a new init system in the 21st century, but systemd is not it.
...[snip]...
systemd alternatives include runit, OpenRC, s6, monit, perp, supervisord, Upstart and GNU dmd.

Noel Torres wrote: On Friday, 5 de September de 2014 09:57:34 Josselin Mouette escribió:

Josselin Mouette wrote:> Noel Torres wrote:

Noel Torres wrote: So we are clearly failing to follow the least surprise (for the user)
path.

Should not logind depend on systemd-shim | systemd-sysv instead?

No. Systemd is the default init system. The default dependencies should
reflect that.

And from a purely functional point of view, it makes more sense to bring
by default the standard, upstream-supported, well-tested solution, than
the Debuntu-specific hack to use it with an inferior init system.

Cheers,

"Inferior" is your personal (and others) opinion. I do not think systemd being
clearly superior. It has better points that sysvinit but also worse points
(already extensively discussed). So that is not a reason to force users
install systemd when they are just upgrading their currently working systems.

So:
* standard: we chose so (against the opinion of a lot of people), nothing more
to discuss about that
* upstream-supported: not exclusive to systemd
* well-tested: not true. sysvinit is the well tested, and well known one
(including its quircks and lacks)
* superior: plain no

The Wanderer wrote: Some, only some of the discussion that followed:

On 09/05/2014 at 03:44 PM, Cameron Norman wrote:

Cameron Norman wrote: On Fri, Sep 5, 2014 at 5:20 AM, Matthias Urlichs wrote:

Matthias Urlichs wrote: Thus, unless the user explicitly tells the apt{-get,itude}
subsystem not to switch to systemd (by whatever means, the
details of which I personally am not at all interested in), a
dist-upgrade should do so.

Currently, this is impossible, since systemd-shim DNE on Wheezy.

But it should be possible to 'apt-get update ; apt-get install systemd-shim ; apt-get dist-upgrade', and AFAICT that should get the job done.

Alternately, it should be possible to pin systemd-sysv to "not installed", even when no such package as systemd-sysv exists - and then dist-upgrade should be able to figure out the necessary dependency resolution.

Adam Borowski wrote: On Sat, Sep 06, 2014 at 11:12:35AM +0200, Ansgar Burchardt wrote:

Ansgar Burchardt wrote: Noel Torres writes:

Noel Torres wrote: So, in your POV, forcing millions of sysadmins out there to take extra pain to keep their systems running as they expect is the way to go?

I think it's fair to expect the few hundred people[1] that want to run a non-default init system to do so, yes.

[1] I can also make up numbers

Ok, so let's quantify the view of sysadmins somehow. This can actually be done in a meaningful way: let's count posts on places where technically-minded folks gather. There's plenty of minor blogs that are biased, but let's choose big sites where we can have a reasonable chance of being unbiased. I chose Slashdot and it's fork, SoylentNews.

Counting only posts above the default threshold for a non-logged-in user:


http://soylentnews.org/article.pl?sid=14/09/01/1844249
(article about "Poettering's vision")

unrelated/no clear opinion: 3
anti-poettering: 10
anti-systemd in particular: 8
ambivalent: 1
pro: 0 !!!

http://soylentnews.org/article.pl?sid=14/08/19/0841221
(article about systemd)

unrelated/no opinion: 12
pro: 1
anti: 15

http://linux.slashdot.org/story/14/09/0 ... n-my-linux
(article about systemd-caused schism)

unrelated/no opinion: 33
pro: 2
anti: 22
ambivalent: 4

Adam Borowski wrote: On Sat, Sep 06, 2014 at 03:02:06PM +0200, Axel Wagner wrote:

Axel Wagner wrote: Moreover, you would need to not count posts, but unique posters, which will be a very hard to get, because in a lot of flames there are people who get one spam-address after the other, when they get blocked, which would further skew the numbers towards whichever camp has more disrespectfull trolls.

That's Slashdot not 4chan. The discussion there is mostly civil, and spam-posters immediately get moderated into oblivion. If you want your posts to show up, you need an established account rather than something newly created. Heck, in the methodology I used, the threshold was high enough that even an old account would require at least one up-mod to get counted.

Thus, Slashdot post count is more meaningful than, say, counting posts here on unmoderated debian-devel.

Josselin Mouette wrote: Adam Borowski wrote:

Adam Borowski wrote: Ok, so let's quantify the view of sysadmins somehow. This can actually
be done in a meaningful way: let's count posts on places where
technically-minded folks gather. There's plenty of minor blogs that are
biased, but let's choose big sites where we can have a reasonable chance
of being unbiased. I chose Slashdot and it's fork, SoylentNews.
...[snip]...

Excuse me? Are you trying to use the fact that you and your stupid
friends are trolling about systemd all day long in order to justify your
own rants?

And I thought you couldn’t get any lower. You have a very good shovel.

Code: Select all

-- 
 .''`.        Josselin Mouette
: :' :
`. `'
  `-

Jakub Wilk wrote: * Josselin Mouette, 2014-09-08, 10:58:

Josselin Mouette wrote: Excuse me? Are you trying to use the fact that you and your stupid friends are trolling about systemd all day long in order to justify your own rants?
And I thought you couldn’t get any lower. You have a very good shovel.

OTOH, a hydraulic excavator must have been involved in writing your mail.

Can we now all go back to the ground level? (Or higher?!)

Martinx - ジェームズ wrote: Hi!
Yes, please... I vote +1 for not silently replace sysvinit by systemd, when upgrading from Debian 7, to 8.
...[snip]...
Also, the current Populatiry Contest is unfair, because it shows systemd winning, when it is being pushed.
...[snip]...
Also, providing two init systems during Debian 8 cycle (or until kFreeBSD remains around), will calm down people all over the world.
...[snip]...

Samuel Thibault wrote:

Ondřej Surý wrote: Ondřej Surý, le Tue 09 Sep 2014 13:10:48 +0200, a écrit :
And I'm saying that all we have is anecdotal evidence

Our uni lab has switched to systemd, 20% of the machines do not boot.
The admin is currently looking at what the difference could be between
them to expain such a difference (same hardware, supposed-to-be same
software installation).

Samuel Thibault wrote:

Matthias Urlichs wrote: You cannot have an MTA without configuring it, and nobody even tried to
implement auto-migration of the old default mailer's configuration to the
new one. Also, we didn't switch to a different default mailer because the
new one offered a heap of features and infrastructure which the other
lacked.

None of this applies to systemd.

This does apply to systemd too.

When I got "upgraded" to systemd on july, my system was completely
misbehaving for several reasons related to my configuration:

- I had an ISO mount in my fstab, whose file didn't exist any more,
sysvinit never complained about it, systemd just stopped at boot.
- I had several bind mounts, forming loops, which has never been a
problem for sysvinit, but it made systemd take ages to boot & shutdown
because it'd crazily bring thousands of lines in /proc/mounts, details
in #755674.
- I had tweaks in /etc/inittab to get the gettys earlier than
daemon starts, in case those get stuck etc., this does not work any
more with systemd.
- I had tweaks in /etc/inittab to have more gettys on the text console,
this does not work with systemd any more.
- I had tweaks in /etc/inittab to shutdown instead of reboot when I
press ctrl-alt-backspace, this does not work with systemd any more.

If I had tweaks in /etc/inittab to enable serial consoles, would the
upgrade to systemd kept them working? I haven't found code about this.
This is *especially* important for servers, for which that might be the
only way to access the system without having to take the bike to get to
the datacenter.

Of course, these are all bugs that could be fixed in systemd. I however
doubt we can discover (and fix) them all for Jessie, and I strongly
doubt that the first item of my list (which is more a difference of
behavior than a bug) will be ever be fixed actually.

If it ain't broken, don't break it.

Samuel Thibault wrote:

Ondřej Surý wrote: Ondřej Surý, le Tue 09 Sep 2014 11:47:38 +0200, a écrit :
And you are saying that you can do all those tweaks, but you cannot
pin systemd-sysv to not install?

No, I'm saying that if I hadn't noticed "systemd" among the upgrades, I would have gotten all these changes all of a sudden without asking for them. That can be pretty bad for the serial console access.

And I'm saying that I don't think this is an isolated case, I believe most our users prefer to stay with sysvinit when upgrading from wheezy to jessie, at least to keep the behavior of their machine as it is, and then consider switching to systemd. Collapsing both is asking for regressions and angry users...

Samuel Thibault wrote: ...(they already tell me bad Debian jokes about the upgrade to systemd).

WikiLeaks wrote:

Glyn Moody wrote: @wikileaks: a question - did you really say "Debian Is Owned By The NSA"? -

@glynmoody None of our people said this. Mr. Assange spoke about vulnerability of OS's to bribes and bugdoors in upstream components.

IgnorantGuru wrote: [Julian] discussed ...[snip]... how encryption can level the playing field between powerful governments and people, and about 20 minutes into his address, he discussed how UNIX-like systems like Debian ...[snip]... are engineered by nation-states with backdoors which are easily introduced as ‘bugs’, and how the Linux system depends on thousands of packages and libraries that may be compromised.

watching his 36 minute Q&A in its entirety, keeping in mind my recent warnings about how GNU/Linux is almost entirely engineered by the government/military-affiliated Red Hat corporation

Assange mentions how Debian famously botched the SSH random number generator for years (which was clearly sabotaged). Speaking of botched security affecting Red Hat, Debian, Ubuntu, Gentoo, SuSE, *BSD, and more, the nightmarish OpenSSL recently botched SSL again ...[snip]...

For more on how OpenSSL is a nightmare, and why this bug is one among many that will never be found, listen to FreeBSD developer Poul-Heening Kamp’s excellent talk at the FOSDEM BSD conference.

IgnorantGuru wrote: From the start, my revelations on this blog about Red Hat’s deep control of Linux, along with their large corporate/government connections, hasn’t been just about spying, but about losing the distributed engineering quality of Linux, with Red Hat centralizing control.
Yet ...[snip]... as soon as I started using Linux years ago, I noted that all the major distributions used watered-down encryption ...[snip]... This told me then that those who controlled distributions were deeply in the pockets of intelligence networks.

So it comes as no surprise to me that they jumped on board systemd when told to, despite the mock choice publicized to users – there was never any option.

buntunub wrote:Miroslav, your posts are too long, and they are repeated from the Offtopic rant. You do the movement to stop Systemd in Jessie no good service by posting like this. There is a growing movement afoot already, and from well seasoned and reasoned folks that are long time Debian users/developers. Really, there is no need to rant. Let's keep things moving in the right direction, please, and know that many Debian users feel as you do.

I'll take Godfather Vito Corleone's stance...

If they wish to poison themselves with systemd, let them. They're all hipster loving fadware coddling animals anyway, so let them lose their souls.

And as Pontius Pilate, I wash my hands of this.

harrycaul wrote:

Corleone's stance...
If they wish to poison themselves with systemd, let them.

This is illicit abuse of process and they need to be prosecuted.

Date	Tue, 7 Oct 2014 11:25:45 +0000
Subject	Debian "Administration" cancels systemd-shim to force systemd lock-in upon "users"

Gregory Smith wrote:

You could also work with uselessd, whether on the project itself or work on adapting a distro
to use it.

A few days ago the Debian administration ruled out any use of a systemd "substitute"
(cancelling its own systemd-shim project for desktop users) and now requires systemd whole
hog.

We knew that would happen. Accommodations are only a temporary stratagem with the systemd people. They are out to conquer. They need to be stopped, halted.

There has been no General Resolution amongst debian package maintainers. Red Hat has instituted a regulatory capture of the "bug squashing" committee within debian (the "Technical Committee") by having current or former (but stock holding) employees moonlight in debian and gradually gain membership in that comittie.

Once their numbers were sufficient they proceeded to file a bug report on the fact that systemd was not standard in debian.

This is illicit abuse of process and they need to be prosecuted.

Debian is an unincorporated association. It has bylaws, trade practices, and dealings by which it was governed. The RedHat associated members of the Technical Committee have illegally and in bad faith abused their positions in-order to realize financial and strategic gain for their employer.

golinux wrote:@PAP . . . Devuan will provide a systemd-free Debian-based option. Check out Devuan on gitlab

PAP wrote:… and Debian doesn't really give me the option not to use it.